Detections
Analytics

Crestron DGE-100 Continuous Name Change Denial of Service

high Nessus Network Monitor Plugin ID 720268

Synopsis

Crestron DGE-100 devices are vulnerable to Denial of Service caused by an attacker changing device name every few seconds.

Description

An unauthenticated, remote threat actor could change the device's name via a crafted UDP request to port 41794. After a name change the device reboots. An attacker can cause a denial of service scenario simply by sending a name change request every 30 seconds or so.

Solution

Crestron devices support an autodiscovery feature which allows them to be detected, report basic information, and do some basic configuration remotely. Autodiscovery should be shut off by using the following command: AUTODISCOVERY OFF.

See Also

https://www.tenable.com/security/research/tra-2019-05

Plugin Details

Severity: High

ID: 720268

Family: SCADA

Published: 7/23/2019

Updated: 9/30/2019

Vulnerability Information

Patch Publication Date: 4/2/2019

Vulnerability Publication Date: 4/2/2019