CVE-2002-1236

Linksys BEFSR41 - Denial of Service via Gozila.cgi HTTP Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1236. PoCs published by Jeep 94.

AI-analyzed exploit summary This exploit triggers a denial of service (DoS) in Linksys BEFSR41 routers by sending a malformed request to the 'Gozila.cgi' script without parameters. The vulnerability is exploited via a simple HTTP GET request.

Description

The remote management web server for Linksys BEFSR41 EtherFast Cable/DSL Router before firmware 1.42.7 allows remote attackers to cause a denial of service (crash) via an HTTP request to Gozila.cgi without any arguments.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Jeep 94 · textdoshardware
https://www.exploit-db.com/exploits/21975

This exploit triggers a denial of service (DoS) in Linksys BEFSR41 routers by sending a malformed request to the 'Gozila.cgi' script without parameters. The vulnerability is exploited via a simple HTTP GET request.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Linksys BEFSR41
No auth needed
Prerequisites: Network access to the target router
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory mailing-list x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0049.html
Exploit, Patch, Vendor Advisory x_refsource_misc
http://www.idefense.com/advisory/10.31.02a.txt
Vendor Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/10514.php
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/6086
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=103616324103171&w=2

Scores

EPSS 0.0712
EPSS Percentile 93.5%

Details

Status published
Products (4)
linksys/befsr41 1.40.2
linksys/befsr41 1.41
linksys/befsr41 1.42.3
linksys/befsr41 1.42.7
Published Nov 12, 2002
Tracked Since Feb 18, 2026