Denial of Service Hole in Linksys Router

November 7, 2002

An easily exploitable denial of service vulnerability has been found in one of the most popular makes of cable/DSL routers. The Linksys 4-port EtherFast router, model number BEFSR41, can be crashed by merely accessing the Gozilla.cgi script with a blank request (for example, “http://192.168.0.1/Gozilla.cgi?”). However, this attack only works if the remote management interface is […]