PT-2002-1195 · Linksys · Linksys Befsr81+2

Published

2002-03-15

Updated

2016-10-18

CVE-2002-0109

CVSS v2.0

6.4

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:P

Name of the Vulnerable Software and Affected Versions Linksys EtherFast BEFN2PS4, BEFSR41, and BEFSR81 Routers (affected versions not specified)

Description The issue allows remote attackers to gain sensitive information and cause a denial of service. This is achieved via an SNMP query for the default community string "public", which causes the router to change its configuration and send SNMP trap information back to the system that initiated the query.

Recommendations For Linksys EtherFast BEFN2PS4, BEFSR41, and BEFSR81 Routers, consider changing the default community string "public" to a secure string to prevent unauthorized access. As a temporary workaround, consider disabling SNMP queries for the default community string until a patch is available. Restrict access to the SNMP service to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0109

Affected Products

Linksys Befsr41

Linksys Befsr81

Linksys Etherfast Befn2Ps4

PT-2002-1195 · Linksys · Linksys Befsr81+2

CVE-2002-0109

Related Identifiers

Affected Products

References · 5