CVE-2004-0580

Current Description

DHCP on Linksys BEFSR11, BEFSR41, BEFSR81, and BEFSRU31 Cable/DSL Routers, firmware version 1.45.7, does not properly clear previously used buffer contents in a BOOTP reply packet, which allows remote attackers to obtain sensitive information.

Basic Data

PublishedAugust 06, 2004
Last ModifiedAugust 13, 2018
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactNONE
CVSS 2 - Base Score5.0
SeverityMEDIUM
Exploitability Score10.0
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3HardwareLinksysBefcmu10********
    2.3HardwareLinksysBefn2ps4********
    2.3HardwareLinksysBefn2ps41.42.7*******
    2.3HardwareLinksysBefsr111.40.2*******
    2.3HardwareLinksysBefsr111.41*******
    2.3HardwareLinksysBefsr111.42.3*******
    2.3HardwareLinksysBefsr111.42.7*******
    2.3HardwareLinksysBefsr111.43*******
    2.3HardwareLinksysBefsr111.43.3*******
    2.3HardwareLinksysBefsr111.44*******
    2.3HardwareLinksysBefsr411.35*******
    2.3HardwareLinksysBefsr411.36*******
    2.3HardwareLinksysBefsr411.37*******
    2.3HardwareLinksysBefsr411.38.5*******
    2.3HardwareLinksysBefsr411.39*******
    2.3HardwareLinksysBefsr411.40.2*******
    2.3HardwareLinksysBefsr411.41*******
    2.3HardwareLinksysBefsr411.42.3*******
    2.3HardwareLinksysBefsr411.42.7*******
    2.3HardwareLinksysBefsr411.43*******
    2.3HardwareLinksysBefsr411.43.3*******
    2.3HardwareLinksysBefsr411.44*******
    2.3HardwareLinksysBefsr411.45.7*******
    2.3HardwareLinksysBefsr41w********
    2.3HardwareLinksysBefsr81********
    2.3HardwareLinksysBefsr812.42.7.1*******
    2.3HardwareLinksysBefsr812.44*******
    2.3HardwareLinksysBefsru311.40.2*******
    2.3HardwareLinksysBefsru311.41*******
    2.3HardwareLinksysBefsru311.42.3*******
    2.3HardwareLinksysBefsru311.42.7*******
    2.3HardwareLinksysBefsru311.43*******
    2.3HardwareLinksysBefsru311.43.3*******
    2.3HardwareLinksysBefsru311.44*******
    2.3HardwareLinksysBefsx411.42.7*******
    2.3HardwareLinksysBefsx411.43*******
    2.3HardwareLinksysBefsx411.43.3*******
    2.3HardwareLinksysBefsx411.43.4*******
    2.3HardwareLinksysBefsx411.44*******
    2.3HardwareLinksysBefsx411.44.3*******
    2.3HardwareLinksysBefsx411.45.3*******
    2.3HardwareLinksysBefvp41********
    2.3HardwareLinksysBefvp411.39.64*******
    2.3HardwareLinksysBefvp411.40.3f*******
    2.3HardwareLinksysBefvp411.40.4*******
    2.3HardwareLinksysBefvp411.42.7*******
    2.3HardwareLinksysRv082********
    2.3HardwareLinksysWap55ag1.0.7*******
    2.3HardwareLinksysWrt54g1.42.3*******
    2.3HardwareLinksysWrt54g2.00.8*******

Vulnerable Software List

VendorProductVersions
Linksys Befn2ps4 *, 1.42.7
Linksys Befsr81 *, 2.42.7.1, 2.44
Linksys Befsr11 1.40.2, 1.41, 1.42.3, 1.42.7, 1.43, 1.43.3, 1.44
Linksys Befcmu10 *
Linksys Befsru31 1.40.2, 1.41, 1.42.3, 1.42.7, 1.43, 1.43.3, 1.44
Linksys Befsr41w *
Linksys Befsx41 1.42.7, 1.43, 1.43.3, 1.43.4, 1.44, 1.44.3, 1.45.3
Linksys Befsr41 1.35, 1.36, 1.37, 1.38.5, 1.39, 1.40.2, 1.41, 1.42.3, 1.42.7, 1.43, 1.43.3, 1.44, 1.45.7
Linksys Befvp41 *, 1.39.64, 1.40.3f, 1.40.4, 1.42.7
Linksys Rv082 *
Linksys Wrt54g 1.42.3, 2.00.8
Linksys Wap55ag 1.0.7

References

NameSourceURLTags
http://linksys.custhelp.com/cgi-bin/linksys.cfg/php/enduser/std_adp.php?p_faqid=832&p_%20created=1086294093&p_sid=pU1X1idh&p_lva=&p_sp=cF9zcmNoPSZwX3NvcnRfYnk9JnBfZ3JpZHNvcnQ9%20JnBfcm93X2NudD02NTQmcF9wYWdlPTE*&p_li=http://linksys.custhelp.com/cgi-bin/linksys.cfg/php/enduser/std_adp.php?p_faqid=832&p_%20created=108CONFIRMBroken Link
20040607 Linksys BEFSR41 DHCP vulnerability server leaks network datahttp://marc.info/?l=bugtraq&m=108662876129301&w=2BUGTRAQ
11606http://secunia.com/advisories/11606SECUNIA
1010288http://securitytracker.com/alerts/2004/May/1010288.htmlSECTRACK
6325http://www.osvdb.org/6325OSVDB
10329http://www.securityfocus.com/bid/10329BIDExploit Vendor Advisory
linksys-etherfast-bootp-dos(16142)https://exchange.xforce.ibmcloud.com/vulnerabilities/16142XF