Vulnerability CVE-2002-1312


Published: 2002-11-20   Modified: 2012-02-12

Description:
Buffer overflow in the Web management interface in Linksys BEFW11S4 wireless access point router 2 and BEFSR11, BEFSR41, and BEFSRU31 EtherFast Cable/DSL routers with firmware before 1.43.3 with remote management enabled allows remote attackers to cause a denial of service (router crash) via a long password.

Vendor: Linksys
Product: Befsr81 
Version: 2.42.7.1;
Product: Befsru31 
Version: 1.43; 1.42.7;
Product: Befsr11 
Version: 1.43; 1.42.7;
Product: Befsr41 
Version: 1.43; 1.42.7;
Product: Befn2ps4 
Version: 1.42.7;
Product: Hpro200 
Version: 1.42.7;
Product: Befvp41 
Version: 1.42.7;
Product: Befsx41 
Version: 1.42.7;
Product: Befw11s4 
Version: 1.4.3; 1.4.2.7;

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial

 References:
http://archives.neohapsis.com/archives/bugtraq/2002-12/0022.html
http://www.idefense.com/application/poi/display?id=36&type=vulnerabilities&flashstatus=true
http://www.securityfocus.com/bid/6208
http://www.securityfocus.com/bid/6301
http://www1.corest.com/common/showdoc.php?idx=276&idxseccion=10
https://exchange.xforce.ibmcloud.com/vulnerabilities/10654

Related CVE
CVE-2019-7579
An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. An ability exists for an unauthenticated user to browse a confidential ui/1.0.99.187766/dynamic/js/setup.js.localized file on the router's webserver, allowing for an attacker to iden...
CVE-2009-5157
On Linksys WAG54G2 1.00.10 devices, there is authenticated command injection via shell metacharacters in the setup.cgi c4_ping_ipaddr variable.
CVE-2019-7311
An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. A lack of encryption in how the user login cookie (admin-auth) is stored on a victim's computer results in the admin password being discoverable by a local attacker, and usable to ga...
CVE-2018-3955
An exploitable operating system command injection exists in the Linksys ESeries line of routers (Linksys E1200 Firmware Version 2.0.09 and Linksys E2500 Firmware Version 3.0.04). Specially crafted entries to network configuration information can caus...
CVE-2018-3954
Devices in the Linksys ESeries line of routers (Linksys E1200 Firmware Version 2.0.09 and Linksys E2500 Firmware Version 3.0.04) are susceptible to OS command injection vulnerabilities due to improper filtering of data passed to and retrieved from NV...
CVE-2018-3953
Devices in the Linksys ESeries line of routers (Linksys E1200 Firmware Version 2.0.09 and Linksys E2500 Firmware Version 3.0.04) are susceptible to OS command injection vulnerabilities due to improper filtering of data passed to and retrieved from NV...
CVE-2018-17208
Linksys Velop 1.1.2.187020 devices allow unauthenticated command injection, providing an attacker with full root access, via cgi-bin/zbtest.cgi or cgi-bin/zbtest2.cgi (scripts that can be discovered with binwalk on the firmware, but are not visible i...
CVE-2017-10677
Cross-Site Request Forgery (CSRF) exists on Linksys EA4500 devices with Firmware Version before 2.1.41.164606, as demonstrated by a request to apply.cgi to disable SIP.

Copyright 2019, cxsecurity.com

 

Back to Top