Linksys BEFSX41 System Log Viewer Log_Page_Num Variable Overflow DoS

This script is Copyright (C) 2003-2014 Matt North


Synopsis :

The remote host is vulnerable to a denial of service attack.

Description :

The remote host seems to be a Linksys EtherFast Cable Firewall/Router.

This product is vulnerable to a remote denial of service attack : if
logging is enabled, an attacker can specify a long URL which results
in the router becoming unresponsive.

See also :

http://www.nessus.org/u?b9f768be

Solution :

Update firmware to version 1.45.3.

Risk factor :

Medium / CVSS Base Score : 6.3
(CVSS2#AV:N/AC:M/Au:S/C:N/I:N/A:C)
CVSS Temporal Score : 5.5
(CVSS2#E:H/RL:OF/RC:C)
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 11891 (linksys_dos.nasl)

Bugtraq ID: 8834

CVE ID: CVE-2003-1497