D-Link wireless access point fragmented UDP packet denial of service
| dlink-udp-fragment-dos (24631) |  Low Risk |
Description:
Multiple D-Link wireless access point devices are vulnerable to a denial of service attack. A remote attacker could send a series of fragmented UDP packets to a vulnerable device to cause the device to crash or reboot.
Platforms Affected:
- D-Link, DI-524 3.20 and prior
- D-Link, DI-624
- D-Link, DI-784
Remedy:
It has been reported that this vulnerability is fixed in the latest firmware release. Contact D-Link TechSupport for information on obtaining an upgrade. See References.
Consequences:
Denial of Service
References:
- D-Link Corporation Web site, D-Link TechSupport at http://support.dlink.com/.
- Full-Disclosure Mailing List, Fri, 10 Feb 2006 16:44:50 -0500, [thunkers.net] D-Link Fragmented UDP DoS Vulnerability at http://seclists.org/fulldisclosure/2006/Feb/0193.html.
- BID-16621: Multiple D-Link Products IP Fragment Reassembly Denial of Service Vulnerability
- CVE-2005-4723: D-Link DI-524 Wireless Router, DI-624 Wireless Router, and DI-784 allow remote attackers to cause a denial of service (device reboot) via a series of crafted fragmented UDP packets, possibly involving a missing fragment.
- SA18833: D-Link Wireless Access Point Denial of Service Vulnerability
- VUPEN/ADV-2006-0563: D-Link Wireless Access Points Remote Denial of Service Vulnerability
Reported:
Feb 10, 2006
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net