OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
[Full-disclosure] (0-day) Linksys SPA-921 VoIP Desktop Phone HTTP Server DoS

shawnmerio.com
Date: Wed Oct 04 2006 - 19:13:25 CDT


Title: Linksys SPA-921 VoIP Desktop Phone HTTP Server DoS

Version: 1.0.0

Issues:

1.A long URL request to the phone's HTTP server will cause the phone to
reboot.
2.A long username or password in the HTTP basic auth field will cause the
phone to reboot.

Credit:
Shawn Merdinger, Independent Security Researcher

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/