Lucene search
HistoryNov 16, 2005 - 9:17 p.m.
CVE-2002-2159
linksys
etherfast
cable/dsl
befsr11
befsr41
befsru31
firmware
unauthorized access
remote administration
vulnerability
cve-2002-2159
nvd
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.011 Low
EPSS
Percentile
84.5%
Linksys EtherFast Cable/DSL BEFSR11, BEFSR41 and BEFSRU31 with the firmware 1.42.7 upgrade installed opens TCP port 5678 for remote administration even when the “Block WAN” and “Remote Admin” options are disabled, which allows remote attackers to gain access.
Affected configurations
Node
linksysbefsr11Match1.42.7
ORlinksysbefsr41Match1.42.7
ORlinksysbefsru31Match1.42.7
| CPE | Name | Operator | Version |
|---|---|---|---|
| linksys:befsr11 | linksys befsr11 | eq | 1.42.7 |
| linksys:befsr41 | linksys befsr41 | eq | 1.42.7 |
| linksys:befsru31 | linksys befsru31 | eq | 1.42.7 |
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.011 Low
EPSS
Percentile
84.5%
Related for CVE-2002-2159