Netopia R9100 Router Denial of Service Vulnerability

The Netopia R9100 Router, running firmware version 4.6, is vulnerable to a denial-of-service attack.

Under very specific circumstances, an attacker can cause the affected router to stop. By attempting to make a looped connection from the router's IP address back to the same address, the unit will crash. A manual restart is required to resume operation.

An attack prevents user-disconnect logging and may help the attacker carry out further attacks on the affected host or other systems on its network.

Netopia R9100 Router running firmware version 4.6 is vulnerable; subsequent (and current) versions are not vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus