Description
LinkSys EtherFast BEFSR41 Cable/DSL routers running firmware before 1.39.3 Beta allows a remote attacker to view administration and user passwords by connecting to the router and viewing the HTML source for (1) index.htm and (2) Password.htm.
References (7)
Core 7
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/201390
Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3141
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/5467
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6949
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/1920
Patch, Vendor Advisory mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/203302
Various Sources x_refsource_confirm
ftp://ftp.linksys.com/pub/befsr41/befsr-fw1402.zip
Scores
EPSS
0.0151
EPSS Percentile
81.4%
Details
Status
published
Products (4)
linksys/befsr41
1.35
linksys/befsr41
1.36
linksys/befsr41
1.37
linksys/befsr41
1.38.5
Published
Aug 10, 2001
Tracked Since
Feb 18, 2026