Detections
Analytics

Linksys WRT54G Empty GET Request Remote DoS

medium Nessus Plugin ID 11941

Language:

Synopsis

The remote web server is affected by a denial of service vulnerability.

Description

It is possible to freeze the remote web server by sending an empty GET request. This is known to affect Linksys WRT54G routers.

Solution

Contact the vendor and, if applicable, upgrade the router's firmware.

See Also

http://www.nessus.org/u?6629f502

Plugin Details

Severity: Medium

ID: 11941

File Name: linksys_empty_GET_DoS.nasl

Version: 1.21

Type: remote

Family: CISCO

Published: 12/4/2003

Updated: 5/16/2022

Configuration: Enable thorough checks (optional)

Supported Sensors: Nessus

Risk Information

CVSS Score Rationale: Based on analysis of vendor advisory.

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS Score Source: manual

CVSS v3

Risk Factor: Medium

Base Score: 5.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Vulnerability Information

CPE: cpe:/h:cisco:linksys_wrt54gc_router

Vulnerability Publication Date: 12/4/2003