Vulnerabilities > Linksys
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-11-23 | CVE-2004-0312 | Unspecified vulnerability in Linksys Wap55Ag 1.0.7 Linksys WAP55AG 1.07 allows remote attackers with access to an SNMP read only community string to gain access to read/write communtiy strings via a query for OID 1.3.6.1.4.1.3955.2.1.13.1.2. | 6.4 |
| 2003-12-31 | CVE-2003-1497 | Buffer Errors vulnerability in Linksys Befsx41 1.43.3 Buffer overflow in the system log viewer of Linksys BEFSX41 1.44.3 allows remote attackers to cause a denial of service via an HTTP request with a long Log_Page_Num variable. | 6.3 |
| 2002-12-31 | CVE-2002-2371 | Improper Input Validation vulnerability in Linksys Wet11 1.31/1.32 Linksys WET11 firmware 1.31 and 1.32 allows remote attackers to cause a denial of service (crash) via a packet containing the device's hardware address as the source MAC address in the DLC header. | 7.8 |
| 2002-12-31 | CVE-2002-2159 | Remote Security vulnerability in Linksys Befsr11, Befsr41 and Befsru31 Linksys EtherFast Cable/DSL BEFSR11, BEFSR41 and BEFSRU31 with the firmware 1.42.7 upgrade installed opens TCP port 5678 for remote administration even when the "Block WAN" and "Remote Admin" options are disabled, which allows remote attackers to gain access. | 10.0 |
| 2002-12-31 | CVE-2002-2137 | Information Disclosure vulnerability in GlobalSunTech Access Point GlobalSunTech Wireless Access Points (1) WISECOM GL2422AP-0T, and possibly OEM products such as (2) D-Link DWL-900AP+ B1 2.1 and 2.2, (3) ALLOY GL-2422AP-S, (4) EUSSO GL2422-AP, and (5) LINKSYS WAP11-V2.2, allow remote attackers to obtain sensitive information like WEP keys, the administrator password, and the MAC filter via a "getsearch" request to UDP port 27155. | 5.0 |
| 2002-12-31 | CVE-2002-1865 | Denial of Service vulnerability in Multiple Vendor Access Point Embedded HTTP Server Buffer overflow in the Embedded HTTP server, as used in (1) D-Link DI-804 4.68, Dl-704 V2.56b6, and Dl-704 V2.56b5 and (2) Linksys Etherfast BEFW11S4 Wireless AP + Cable/DSL Router 1.37.2 through 1.42.7 and Linksys WAP11 1.3 and 1.4, allows remote attackers to cause a denial of service (crash) via a long header, as demonstrated using the Host header. | 5.0 |
| 2002-11-20 | CVE-2002-1312 | Buffer Overflow vulnerability in Multiple Linksys Devices Password Field Buffer overflow in the Web management interface in Linksys BEFW11S4 wireless access point router 2 and BEFSR11, BEFSR41, and BEFSRU31 EtherFast Cable/DSL routers with firmware before 1.43.3 with remote management enabled allows remote attackers to cause a denial of service (router crash) via a long password. | 5.0 |
| 2002-11-12 | CVE-2002-1236 | Denial Of Service vulnerability in Linksys BEFSR41 Gozila.CGI The remote management web server for Linksys BEFSR41 EtherFast Cable/DSL Router before firmware 1.42.7 allows remote attackers to cause a denial of service (crash) via an HTTP request to Gozila.cgi without any arguments. | 5.0 |
| 2002-08-12 | CVE-2002-0426 | Unspecified vulnerability in Linksys Befvp41 1.01.04/1.39.64/1.40.1 VPN Server module in Linksys EtherFast BEFVP41 Cable/DSL VPN Router before 1.40.1 reduces the key lengths for keys that are supplied via manual key entry, which makes it easier for attackers to crack the keys. | 7.5 |
| 2002-03-25 | CVE-2002-0109 | Unspecified vulnerability in Linksys Befn2Ps4, Befsr41 and Befsr81 Linksys EtherFast BEFN2PS4, BEFSR41, and BEFSR81 Routers, and possibly other products, allow remote attackers to gain sensitive information and cause a denial of service via an SNMP query for the default community string "public," which causes the router to change its configuration and send SNMP trap information back to the system that initiated the query. | 6.4 |