Title: BinTec X Series Router PPTP Denial of Service Vulnerability
Severity: HIGH
Description:
The X series router is a hardware and firmware router solution manufactured by BinTec. It is designed as a cost-effective network router solution for small to medium-sized companies.
A problem with the firmware makes it possible for a remote user to deny service to networks using the router. The problem involves using a router that has not been registered and had the license key entered into the router firmware.
A X series router is capable of using Point to Point Tunnelling Protocol (PPTP), and uses a daemon built into the firmware to handle PPTP connections. This daemon is active and capable of being used only after the product license has been entered into the firmware.
In firmware version 5.3 Rev 1, the router does not correctly handle the configuration of the daemon when the license key is not present. Upon receiving a TCP connection on port 1723 with the SYN flag set, the router ceases operation. To resume operation, the router requires being power cycled.
In firmware version 5.1 Rev 6, sending a UDP scan to port 53 of routers operating on this firmware causes the router to cease operation, and requires a power cycling to resume normal operation.
Affected Products:
- BinTec X1000 5.3.0 Rev 1
- BinTec X1200 5.1.0
- BinTec X4000 5.1.6 patch 10
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
