• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

3Com HomeConnect Cable Modem External with USB Denial of Service Vulnerability

A problem in the firmware running the cable modem could allow a denial of service. It is possible to reboot the modem by connecting to the HTTP service and requesting a long string. This will cause the modem to reset itself.

This problem makes it possible for a remote user to deny service to legimate users of networks serviced by the modem.

This vulnerability is most likely related to BugTraq ID 2721.

It is possible that this behaviour is due to a buffer overflow condition. If this is the case, an the attacker is familiar with the firmware/hardware, it may be possible to force the execution of attacker-supplied instructions.