[NEWS] Efficient Networks 5861 DSL Router (NMap DoS)

From: support@securiteam.com
Date: 01/12/03

Next message: support@securiteam.com: "[NEWS] BitKeeper Remote Shell Command Execution/Local Vulnerability"

Previous message: support@securiteam.com: "[NT] BRS WebWeaver FTP Server Vulnerabilities"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: support@securiteam.com
To: list@securiteam.com
Date: 12 Jan 2003 18:38:28 +0200

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

Beyond Security would like to welcome Tiscali World Online
to our service provider team.
For more info on their service offering IP-Secure,
please visit http://www.worldonline.co.za/services/work_ip.asp
- - - - - - - - -

Efficient Networks 5861 DSL Router (NMap DoS)
------------------------------------------------------------------------

SUMMARY

<http://www.efficient.com/ebz/5800.html> Efficient Networks Business
Class IDSL, ADSL, or SDSL Routers provide DSL access for up to 100 or more
users with robust firewall and optional Secure Virtual Private Network
(VPN) capabilities. Efficient Networks Business Class DSL Routers are
Business Contingency Plan ready, with features such as Dial Backup and
Virtual Router Redundancy Protocol (VRRP). A vulnerability in the product
allows remote attackers to cause a denial of service attack against the
product by simply port scanning the router's WAN interface.

DETAILS

Vulnerable systems:
* Efficient Networks 5861 DSL Router 5.3.80

When using the built-in IP filtering to block incoming TCP SYN flags, a
simple port scan to the WAN interface of the router will cause it to lock
up, and eventually restart.

Vendor response:
Greg has contacted Efficient Networks to inform them of the problem.

ADDITIONAL INFORMATION

The information has been provided by <mailto:greg@optionsinternet.com>
Greg Bolshaw.

========================================

This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

Next message: support@securiteam.com: "[NEWS] BitKeeper Remote Shell Command Execution/Local Vulnerability"
Previous message: support@securiteam.com: "[NT] BRS WebWeaver FTP Server Vulnerabilities"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: which router will run in bridge mode and carry out PPPoA authentication?
... IIn article, kevin bailey ... am i right in thinking that the siemens
5830 does this? ... i have to replace a BT router and would like to use a router which
can then ... I have replaced my BT router (efficient networks?) with a Draytek Vigor 2800
... (uk.telecom.broadband)
Re: manual for siemens 5830 anyone - or what is the connection details?
... It depends on how the router was configured before you got it. ... The default
IP address for the router is 192.168.254.254, login is superuser and password is admin. ...
It's very similar to the Efficient Networks 5861 - only better (Siemens have rebadged it
- actually Siemens own Efficient Networks). ... (uk.telecom.broadband)