linksys befw11s4 Security Vulnerabilities

3 Vulnerabilities
Description

Buffer overflow in the Web management interface in Linksys BEFW11S4 wireless access point router 2 and BEFSR11, BEFSR41, and BEFSRU31 EtherFast Cable/DSL routers with firmware before 1.43.3 with remote management enabled allows remote attackers to cause a denial of service (router crash) via a long password.

Impacted versions: 1.4.3, 1.4.2.7

Base Score: 5.0, Severity: MEDIUM, ID: CVE-2002-1312, Last Modified: 2017-07-11T01:29:00Z

References

Patch

Modemly Security Checklist

Linksys-BEFW11S4-router-setup

Linksys WRT54GS and BEFW11S4 allows remote attackers to cause a denial of service (device crash) via an IP packet with the same source and destination IPs and ports, and with the SYN flag set (aka LAND). NOTE: the provenance of this issue is unknown; the details are obtained solely from the BID.

Impacted versions: 1.4.3, 1.4.2.7, 1.43.3, 1.44

Base Score: 7.8, Severity: HIGH, ID: CVE-2005-4257, Last Modified: 2008-09-05T20:56:00Z

References

Exploit

Modemly Security Checklist

Linksys-BEFW11S4-router-setup

Buffer overflow in the Embedded HTTP server, as used in (1) D-Link DI-804 4.68, Dl-704 V2.56b6, and Dl-704 V2.56b5 and (2) Linksys Etherfast BEFW11S4 Wireless AP + Cable/DSL Router 1.37.2 through 1.42.7 and Linksys WAP11 1.3 and 1.4, allows remote attackers to cause a denial of service (crash) via a long header, as demonstrated using the Host header.

Impacted versions: 1.37.2, 1.4.2.7, 1.37.2b, 1.37.9b, 1.40.3, 1.42.7

Base Score: 5.0, Severity: MEDIUM, ID: CVE-2002-1865, Last Modified: 2008-09-05T20:31:00Z

References

Exploit Exploit Exploit

Modemly Security Checklist

Linksys-BEFW11S4-router-setup
Free Home-Networking Courses, tutorials and security checklists

USAGE: Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.