Vulnerabilities > Linksys > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-11-23 | CVE-2004-0312 | Unspecified vulnerability in Linksys Wap55Ag 1.0.7 Linksys WAP55AG 1.07 allows remote attackers with access to an SNMP read only community string to gain access to read/write communtiy strings via a query for OID 1.3.6.1.4.1.3955.2.1.13.1.2. | 6.4 |
| 2003-12-31 | CVE-2003-1497 | Buffer Errors vulnerability in Linksys Befsx41 1.43.3 Buffer overflow in the system log viewer of Linksys BEFSX41 1.44.3 allows remote attackers to cause a denial of service via an HTTP request with a long Log_Page_Num variable. | 6.3 |
| 2002-12-31 | CVE-2002-2137 | Information Disclosure vulnerability in GlobalSunTech Access Point GlobalSunTech Wireless Access Points (1) WISECOM GL2422AP-0T, and possibly OEM products such as (2) D-Link DWL-900AP+ B1 2.1 and 2.2, (3) ALLOY GL-2422AP-S, (4) EUSSO GL2422-AP, and (5) LINKSYS WAP11-V2.2, allow remote attackers to obtain sensitive information like WEP keys, the administrator password, and the MAC filter via a "getsearch" request to UDP port 27155. | 5.0 |
| 2002-12-31 | CVE-2002-1865 | Denial of Service vulnerability in Multiple Vendor Access Point Embedded HTTP Server Buffer overflow in the Embedded HTTP server, as used in (1) D-Link DI-804 4.68, Dl-704 V2.56b6, and Dl-704 V2.56b5 and (2) Linksys Etherfast BEFW11S4 Wireless AP + Cable/DSL Router 1.37.2 through 1.42.7 and Linksys WAP11 1.3 and 1.4, allows remote attackers to cause a denial of service (crash) via a long header, as demonstrated using the Host header. | 5.0 |
| 2002-11-20 | CVE-2002-1312 | Buffer Overflow vulnerability in Multiple Linksys Devices Password Field Buffer overflow in the Web management interface in Linksys BEFW11S4 wireless access point router 2 and BEFSR11, BEFSR41, and BEFSRU31 EtherFast Cable/DSL routers with firmware before 1.43.3 with remote management enabled allows remote attackers to cause a denial of service (router crash) via a long password. | 5.0 |
| 2002-11-12 | CVE-2002-1236 | Denial Of Service vulnerability in Linksys BEFSR41 Gozila.CGI The remote management web server for Linksys BEFSR41 EtherFast Cable/DSL Router before firmware 1.42.7 allows remote attackers to cause a denial of service (crash) via an HTTP request to Gozila.cgi without any arguments. | 5.0 |
| 2002-03-25 | CVE-2002-0109 | Unspecified vulnerability in Linksys Befn2Ps4, Befsr41 and Befsr81 Linksys EtherFast BEFN2PS4, BEFSR41, and BEFSR81 Routers, and possibly other products, allow remote attackers to gain sensitive information and cause a denial of service via an SNMP query for the default community string "public," which causes the router to change its configuration and send SNMP trap information back to the system that initiated the query. | 6.4 |
| 2001-12-21 | CVE-2001-0888 | Denial of Service vulnerability in Atmel SNMP public Community or Unknown OID Atmel Firmware 1.3 Wireless Access Point (WAP) allows remote attackers to cause a denial of service via a SNMP request with (1) a community string other than "public" or (2) an unknown OID, which causes the WAP to deny subsequent SNMP requests. | 5.0 |
| 2001-08-10 | CVE-2001-1117 | Unspecified vulnerability in Linksys Befsr41 LinkSys EtherFast BEFSR41 Cable/DSL routers running firmware before 1.39.3 Beta allows a remote attacker to view administration and user passwords by connecting to the router and viewing the HTML source for (1) index.htm and (2) Password.htm. | 5.0 |