[Full-disclosure] (0-day) Linksys SPA-921 VoIP Desktop Phone HTTP Server DoS

shawnmer at io.com shawnmer at io.com
Thu Oct 5 01:13:25 BST 2006

Previous message: [Full-disclosure] (0-Day) GrandStream GXP-2000 VoIP Desktop Phone multiple undocumented UDP ports and DoS
Next message: [Full-disclosure] [SECURITY] [DSA 1191-1] New Mozilla Thunderbird packages fix several vulnerabilities
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Title:  Linksys SPA-921 VoIP Desktop Phone HTTP Server DoS

Version:  1.0.0

Issues:

1.A long URL request to the phone's HTTP server will cause the phone to
reboot.
2.A long username or password in the HTTP basic auth field will cause the
phone to reboot.

Credit:
Shawn Merdinger, Independent Security Researcher

Previous message: [Full-disclosure] (0-Day) GrandStream GXP-2000 VoIP Desktop Phone multiple undocumented UDP ports and DoS
Next message: [Full-disclosure] [SECURITY] [DSA 1191-1] New Mozilla Thunderbird packages fix several vulnerabilities
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Full-Disclosure is hosted and sponsored by Secunia.