Vulnerabilities > CVE-2006-1067 - Remote IRC Denial Of Service vulnerability in Multiple Router Vendor
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Linksys WRT54G routers version 5 (running VXWorks) allow remote attackers to cause a denial of service by sending a malformed DCC SEND string to an IRC channel, which causes an IRC connection reset, possibly related to the masquerading code for NAT environments, and as demonstrated via (1) a DCC SEND with a single long argument, or (2) a DCC SEND with IP, port, and filesize arguments with a 0 value.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 1 |
References
- http://www.hm2k.org/news/1141413208.html
- http://www.securityfocus.com/archive/1/426756/100/0/threaded
- http://www.securityfocus.com/archive/1/426761/100/0/threaded
- http://www.securityfocus.com/archive/1/426863/100/0/threaded
- http://www.securityfocus.com/archive/1/426934/100/0/threaded
- http://www.securityfocus.com/bid/16954
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25230