An easily exploitable
denial of service vulnerability has been found in one of the most popular makes of cable/DSL routers. The Linksys 4-port EtherFast router, model number BEFSR41, can be crashed by merely accessing the Gozilla.cgi script with a blank request (for example, “http://192.168.0.1/Gozilla.cgi?”).

However, this attack only works if the remote management interface is enabled – and it isn’t by default. Firmware versions earlier than 1.42.7 are susceptible; you can upgrade to version 1.43 here.

N-Stealth 3.7 is already able to scan for this security hole.