Title: Hughes Technologies DSL_Vdns Denial of Service Vulnerability
Severity: HIGH
Description:
DSL_Vdns enables ADSL, DSL, ISDN or Cable Modem user's to host their own web site. DSL_Vdns detects when a Dynamic IP address has changed and connects to a Vdnshost System updating the IP Address.
By default DSL_Vdns listens on ports 6070 and 80. A vulnerability exists in DSL_Vdns which enables a remote user to cause a denial of service on a host using DSL_Vdns.
Submitting a URL composed of arbitrary data to port 6070 and closing the connection before the request is processed, will cause DSL_Vdns to enter a 'Default.Closed' state; therefore, refusing any new connections.
A restart of the service is required in order to gain normal functionality.
Affected Products:
- Hughes Technologies DSL_Vdns 1.0.0
References:
- Hughes Technologies: DSL_Vdns Hompage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
