Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4999

Overview

Vulnerability Score 6.1 6.1
CVE Id CVE-2012-4999
Last Modified 21 Sep 2012 12:00:00
Published 19 Sep 2012 03:55:08
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector ADJACENT_NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4999

Summary

Mercury MR804 Router 8.0 3.8.1 Build 101220 Rel.53006nB allows remote attackers to cause a denial of service (service hang) via a crafted string in HTTP header fields such as (1) If-Modified-Since, (2) If-None-Match, or (3) If-Unmodified-Since. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Operating System

  • Mercurycom Mr804 Firmware 3.8.1


References

XF - mercury-mr804-header-dos(73383)

BID - 52106

SECUNIA - 48079

BUGTRAQ - 20120221 Mercurycom MR804 Router - Multiple HTTP Header Fields Denial Of Service Vulnerability


Last Updated: 27 May 2016 11:00:44