TITLE:
Conceptronic CADSLR1 Router Denial of Service Vulnerability

SECUNIA ADVISORY ID:
SA12110

VERIFY ADVISORY:
http://secunia.com/advisories/12110/

CRITICAL:
Less critical

IMPACT:
DoS

WHERE:
>From local network

OPERATING SYSTEM:
Conceptronic CADSLR1
http://secunia.com/product/3707/

DESCRIPTION:
Jordi Corrales has reported a vulnerability in CADSLR1, allowing
malicious people to cause a Denial of Service.

The problem is that the device fails to handle HTTP requests with a
long username (65535 characters). This causes the device to reboot.

This has been reported to affect devices running firmware version
3.04n. Prior versions may also be affected.

SOLUTION:
Filter access to the device or disable the HTTP service.

PROVIDED AND/OR DISCOVERED BY:
Jordi Corrales

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------