CVE-2002-1312
CVE-2002-1312 is a medium-severity vulnerability in Linksys Befn2ps4 with a CVSS 2.0 base score of 5.0. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: Medium (CVSS 2.0 base score 5.0)
- EPSS exploit prediction: 2% (78th percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Linksys Befn2ps4
- Published:
- Last modified:
Description
Buffer overflow in the Web management interface in Linksys BEFW11S4 wireless access point router 2 and BEFSR11, BEFSR41, and BEFSRU31 EtherFast Cable/DSL routers with firmware before 1.43.3 with remote management enabled allows remote attackers to cause a denial of service (router crash) via a long password.
Frequently asked questions
- What is CVE-2002-1312?
- Buffer overflow in the Web management interface in Linksys BEFW11S4 wireless access point router 2 and BEFSR11, BEFSR41, and BEFSRU31 EtherFast Cable/DSL routers with firmware before 1.43.3 with remote management enabled allows remote attackers to cause a denial of service (router crash) via a long password.
- How severe is CVE-2002-1312?
- CVE-2002-1312 has a CVSS 2.0 base score of 5.0, rated medium severity.
- Is CVE-2002-1312 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 2% (78th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2002-1312?
- CVE-2002-1312 primarily affects Linksys Befn2ps4. In total, 13 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2002-1312?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2002-1312 published?
- CVE-2002-1312 was published on 2002-11-20 and last updated on 2026-06-16.
References
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0022.html
- http://www.idefense.com/application/poi/display?id=36&type=vulnerabilities&flashstatus=true
- http://www.securityfocus.com/bid/6208
- http://www.securityfocus.com/bid/6301
- http://www1.corest.com/common/showdoc.php?idx=276&idxseccion=10
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10654
Affected products (13)
- cpe:2.3:h:linksys:befn2ps4:1.42.7:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:befsr11:1.42.7:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:befsr11:1.43:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:befsr41:1.42.7:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:befsr41:1.43:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:befsr81:2.42.7.1:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:befsru31:1.42.7:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:befsru31:1.43:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:befsx41:1.42.7:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:befvp41:1.42.7:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:befw11s4:1.4.2.7:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:befw11s4:1.4.3:*:*:*:*:*:*:*
- cpe:2.3:h:linksys:hpro200:1.42.7:*:*:*:*:*:*:*
More vulnerabilities in Linksys Befn2ps4
- CVE-2002-0109 — Medium (CVSS 6.4): Linksys EtherFast BEFN2PS4, BEFSR41, and BEFSR81 Routers, and possibly other products, allow remote attackers to gain…
- CVE-2004-0580 — Medium (CVSS 5.0): DHCP on Linksys BEFSR11, BEFSR41, BEFSR81, and BEFSRU31 Cable/DSL Routers, firmware version 1.45.7, does not properly…