Vulnerability Details CVE-2002-1236
The remote management web server for Linksys BEFSR41 EtherFast Cable/DSL Router before firmware 1.42.7 allows remote attackers to cause a denial of service (crash) via an HTTP request to Gozila.cgi without any arguments.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.052
EPSS Ranking 89.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0049.html
- http://marc.info/?l=bugtraq&m=103616324103171&w=2
- http://www.idefense.com/advisory/10.31.02a.txt
- http://www.iss.net/security_center/static/10514.php
- http://www.securityfocus.com/bid/6086
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0049.html
- http://marc.info/?l=bugtraq&m=103616324103171&w=2
- http://www.idefense.com/advisory/10.31.02a.txt
- http://www.iss.net/security_center/static/10514.php
- http://www.securityfocus.com/bid/6086
Products affected by CVE-2002-1236
-
cpe:2.3:h:linksys:befsr41:1.40.2
-
cpe:2.3:h:linksys:befsr41:1.41
-
cpe:2.3:h:linksys:befsr41:1.42.3
-
cpe:2.3:h:linksys:befsr41:1.42.7