Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
Subject: Hardware Exploit - Gets network Down
From: netsec [davidv] (netsecGFI.COM)
Date: Thu Jun 01 2000 - 08:53:14 CDT
- Next message: Security Team: "DST2K0007: Buffer Overrun in ITHouse Mail Server v1.04"
- Previous message: Morpheus: "more majordomo brokeness - "exploit""
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Subject: Allegro-Software-RomPager/2.10 vulnerable to Dos Attack
Advisory TS002 -------------------------------------------
Allegro-Software-RomPager is an http server which is
used in network hardware like switches to provide a
web interface to remotely configure your hardware.
Recently I was bashing up a D-Link DES-3224+ ethernet
switch and after submitting a number of invalid authentication
requests to the Allegro-Software-RomPager installed on
it I managed to freeze the whole switch putting all the
It seems that sending an incorrect request to the switch
will cause the http server to crash and then crashing
the actual switch. I only tested this on a D-Link DES-3224+
however there are other companies which use the Allegro
software for their devices.
Companies which use it are (as on Allegro website):
American Power Conversion
Andover Controls Corporation
D-Link Systems, Inc.
... and other companies
This is rather serious as if all these hardware items
can be crashed by just an invalid request a typical
blackhat can crash a whole company infrastructure in
a couple of minutes.
Also APC (American Power Supplies) use it and if
anyone has a UPS of APC with RomPager try to test it
out. I hope the RomPager does not have any control of
the actual power supply.
I wont release any exploit apps. for now.
Please email me of any hardware you may find which is
expoitable so I can mantain a list.
Thanks to USSRlabs; Max Vision; rfp; Dragos and other people at the
This disclaimer was sent by Mail essentials for Exchange/SMTP.
Mail essentials adds content checking of inbound and outbound mail,
PGP email encryption, disclaimers, anti virus, anti spam, mail
archiving outbound mail compression, personalised auto replies
and more to Exchange server!
More information on http://www.gficomms.com/mesindex.htm
To send us secure email, use our PGP key below. Mail essentials will
automatically decrypt your message at our Exchange server.
-----BEGIN PGP PUBLIC KEY BLOCK-----
-----END PGP PUBLIC KEY BLOCK-----