Buffer overflow in the Web management interface in Linksys BEFW11S4 wireless access point router 2 and BEFSR11, BEFSR41, and BEFSRU31 EtherFast Cable/DSL routers with firmware before 1.43.3 with remote management enabled allows remote attackers to cause a denial of service (router crash) via a long password.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Befn2ps4 | Linksys | 1.42.7 (including) | 1.42.7 (including) |
| Befsr11 | Linksys | 1.42.7 (including) | 1.42.7 (including) |
| Befsr11 | Linksys | 1.43 (including) | 1.43 (including) |
| Befsr41 | Linksys | 1.42.7 (including) | 1.42.7 (including) |
| Befsr41 | Linksys | 1.43 (including) | 1.43 (including) |
| Befsr81 | Linksys | 2.42.7.1 (including) | 2.42.7.1 (including) |
| Befsru31 | Linksys | 1.42.7 (including) | 1.42.7 (including) |
| Befsru31 | Linksys | 1.43 (including) | 1.43 (including) |
| Befsx41 | Linksys | 1.42.7 (including) | 1.42.7 (including) |
| Befvp41 | Linksys | 1.42.7 (including) | 1.42.7 (including) |
| Befw11s4 | Linksys | 1.4.2.7 (including) | 1.4.2.7 (including) |
| Befw11s4 | Linksys | 1.4.3 (including) | 1.4.3 (including) |
| Hpro200 | Linksys | 1.42.7 (including) | 1.42.7 (including) |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0022.html
- http://www.idefense.com/application/poi/display?id=36\u0026type=vulnerabilities\u0026flashstatus=true
- http://www.securityfocus.com/bid/6208
- http://www.securityfocus.com/bid/6301
- http://www1.corest.com/common/showdoc.php?idx=276\u0026idxseccion=10
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10654
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0022.html
- http://www.idefense.com/application/poi/display?id=36\u0026type=vulnerabilities\u0026flashstatus=true
- http://www.securityfocus.com/bid/6208
- http://www.securityfocus.com/bid/6301
- http://www1.corest.com/common/showdoc.php?idx=276\u0026idxseccion=10
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10654