CVE-2012-4999

Mercury MR804 Router <8.0.3.8.1 Build - DoS

Title source: llm

Description

Mercury MR804 Router 8.0 3.8.1 Build 101220 Rel.53006nB allows remote attackers to cause a denial of service (service hang) via a crafted string in HTTP header fields such as (1) If-Modified-Since, (2) If-None-Match, or (3) If-Unmodified-Since. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by demonalex · perldoshardware

https://www.exploit-db.com/exploits/36868

View Code ZIP pw:eip

References (4)

[Exploit] http://archives.neohapsis.com/archives/bugtraq/2012-02/0116.html

[Vendor Advisory] http://secunia.com/advisories/48079

[Exploit] http://www.securityfocus.com/bid/52106

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/73383

Scores

EPSS 0.0976

EPSS Percentile 93.0%

Details

CWE

CWE-20

Status published

Products (2)

mercurycom/mr804 8.0

mercurycom/mr804_firmware 3.8.1

Published Sep 19, 2012

Tracked Since Feb 18, 2026