CVE-2004-0580

2004-06-2304:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.022 Low

EPSS

Percentile

89.5%

JSON

DHCP on Linksys BEFSR11, BEFSR41, BEFSR81, and BEFSRU31 Cable/DSL Routers, firmware version 1.45.7, does not properly clear previously used buffer contents in a BOOTP reply packet, which allows remote attackers to obtain sensitive information.

References

linksys.custhelp.com/cgi-bin/linksys.cfg/php/enduser/std_adp.php?p_faqid=832&p_%20%5Ccreated=1086294093&p_sid=pU1X1idh&p_lva=&p_sp=cF9zcmNoPSZwX3NvcnRfYnk9JnBfZ3JpZHNvcnQ9%20%5CJnBfcm93X2NudD02NTQmcF9wYWdlPTE%2A&p_li=

marc.info/?l=bugtraq&m=108662876129301&w=2

secunia.com/advisories/11606

securitytracker.com/alerts/2004/May/1010288.html

www.osvdb.org/6325

www.securityfocus.com/bid/10329

exchange.xforce.ibmcloud.com/vulnerabilities/16142