CVE-2002-1312: Buffer Overflow
First published: Wed Nov 20 2002(Updated: )
Buffer overflow in the Web management interface in Linksys BEFW11S4 wireless access point router 2 and BEFSR11, BEFSR41, and BEFSRU31 EtherFast Cable/DSL routers with firmware before 1.43.3 with remote management enabled allows remote attackers to cause a denial of service (router crash) via a long password.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linksys Befsr81 | =2.42.7.1 | |
| Linksys BEFVP41 | =1.42.7 | |
| Linksys Hpro200 | =1.42.7 | |
| Linksys BEFSR11 | =1.43 | |
| Linksys Befsru31 | =1.43 | |
| Linksys BEFSR41 | =1.42.7 | |
| Linksys BEFW11S4 | =1.4.3 | |
| Linksys BEFSX41 | =1.42.7 | |
| Linksys BEFSR11 | =1.42.7 | |
| Linksys Befsru31 | =1.42.7 | |
| Linksys BEFSR41 | =1.43 | |
| Linksys BEFW11S4 | =1.4.2.7 | |
| Linksys Befn2ps4 | =1.42.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0022.html
- http://www.securityfocus.com/bid/6208
- http://www1.corest.com/common/showdoc.php?idx=276&idxseccion=10
- http://www.idefense.com/application/poi/display?id=36&type=vulnerabilities&flashstatus=true
- http://www.securityfocus.com/bid/6301
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10654
Frequently Asked Questions
What is the severity of CVE-2002-1312?
CVE-2002-1312 is considered a high severity vulnerability due to its potential for remote exploitation and denial of service.
How do I fix CVE-2002-1312?
To fix CVE-2002-1312, upgrade the firmware of affected Linksys routers to version 1.43.3 or later.
Which devices are affected by CVE-2002-1312?
CVE-2002-1312 affects various Linksys routers including the BEFW11S4, BEFSR11, BEFSR41, and BEFSRU31 with specific firmware versions prior to 1.43.3.
What type of attack does CVE-2002-1312 facilitate?
CVE-2002-1312 allows remote attackers to exploit a buffer overflow, potentially leading to a denial-of-service condition.
Is remote management a factor in CVE-2002-1312?
Yes, CVE-2002-1312 is specifically relevant when remote management is enabled on the affected Linksys routers.
- collector/nvd-historical
- vendor/linksys
- product/befsr81
- canonical/linksys befsr81
- product/befvp41
- canonical/linksys befvp41
- product/hpro200
- canonical/linksys hpro200
- product/befsr11
- canonical/linksys befsr11
- product/befsru31
- canonical/linksys befsru31
- product/befsr41
- canonical/linksys befsr41
- product/befw11s4
- canonical/linksys befw11s4
- product/befsx41
- canonical/linksys befsx41
- product/befn2ps4
- canonical/linksys befn2ps4
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/remedy
- agent/author
- agent/tags
- agent/description
- agent/event
- agent/source
- version/linksys befsr81/2.42.7.1
- version/linksys befvp41/1.42.7
- version/linksys hpro200/1.42.7
- version/linksys befsr11/1.43
- version/linksys befsru31/1.43
- version/linksys befsr41/1.42.7
- version/linksys befw11s4/1.4.3
- version/linksys befsx41/1.42.7
- version/linksys befsr11/1.42.7
- version/linksys befsru31/1.42.7
- version/linksys befsr41/1.43
- version/linksys befw11s4/1.4.2.7
- version/linksys befn2ps4/1.42.7