Vulnerability Description
The remote management web server for Linksys BEFSR41 EtherFast Cable/DSL Router before firmware 1.42.7 allows remote attackers to cause a denial of service (crash) via an HTTP request to Gozila.cgi without any arguments.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linksys | Befsr41 | 1.40.2 |
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0049.html
- http://marc.info/?l=bugtraq&m=103616324103171&w=2
- http://www.idefense.com/advisory/10.31.02a.txtExploitPatchVendor Advisory
- http://www.iss.net/security_center/static/10514.phpVendor Advisory
- http://www.securityfocus.com/bid/6086
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0049.html
- http://marc.info/?l=bugtraq&m=103616324103171&w=2
- http://www.idefense.com/advisory/10.31.02a.txtExploitPatchVendor Advisory
- http://www.iss.net/security_center/static/10514.phpVendor Advisory
- http://www.securityfocus.com/bid/6086
FAQ
What is CVE-2002-1236?
CVE-2002-1236 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The remote management web server for Linksys BEFSR41 EtherFast Cable/DSL Router before firmware 1.42.7 allows remote attackers to cause a denial of service (crash) via an HTTP request to Gozila.cgi wi...
How severe is CVE-2002-1236?
CVE-2002-1236 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-1236?
Check the references section above for vendor advisories and patch information. Affected products include: Linksys Befsr41.