CVE-2004-0580

Description

DHCP on Linksys BEFSR11, BEFSR41, BEFSR81, and BEFSRU31 Cable/DSL Routers, firmware version 1.45.7, does not properly clear previously used buffer contents in a BOOTP reply packet, which allows remote attackers to obtain sensitive information.

Affected (50)

Products: Linksys: Befcmu10, Befn2ps4, Befsr11, Befsr41, Befsr41w, Befsr81, Befsru31, Befsx41, Befvp41, Rv082, Wap55ag, Wrt54g

12 products

Configuration A

50 vulnerable

Vulnerable Software	Affected Versions
Linksys Befcmu10	All versions
Linksys Befn2ps4	All versions
Linksys Befn2ps4	Version 1.42.7
Linksys Befsr11	Version 1.40.2
Linksys Befsr11	Version 1.41
Linksys Befsr11	Version 1.42.3
Linksys Befsr11	Version 1.42.7
Linksys Befsr11	Version 1.43.3
Linksys Befsr11	Version 1.43
Linksys Befsr11	Version 1.44
Linksys Befsr41	Version 1.35
Linksys Befsr41	Version 1.36
Linksys Befsr41	Version 1.37
Linksys Befsr41	Version 1.38.5
Linksys Befsr41	Version 1.39
Linksys Befsr41	Version 1.40.2
Linksys Befsr41	Version 1.41
Linksys Befsr41	Version 1.42.3
Linksys Befsr41	Version 1.42.7
Linksys Befsr41	Version 1.43.3
Linksys Befsr41	Version 1.43
Linksys Befsr41	Version 1.44
Linksys Befsr41	Version 1.45.7
Linksys Befsr41w	All versions
Linksys Befsr81	All versions
Linksys Befsr81	Version 2.42.7.1
Linksys Befsr81	Version 2.44
Linksys Befsru31	Version 1.40.2
Linksys Befsru31	Version 1.41
Linksys Befsru31	Version 1.42.3
Linksys Befsru31	Version 1.42.7
Linksys Befsru31	Version 1.43.3
Linksys Befsru31	Version 1.43
Linksys Befsru31	Version 1.44
Linksys Befsx41	Version 1.42.7
Linksys Befsx41	Version 1.43.3
Linksys Befsx41	Version 1.43.4
Linksys Befsx41	Version 1.43
Linksys Befsx41	Version 1.44.3
Linksys Befsx41	Version 1.44
Linksys Befsx41	Version 1.45.3
Linksys Befvp41	All versions
Linksys Befvp41	Version 1.39.64
Linksys Befvp41	Version 1.40.3f
Linksys Befvp41	Version 1.40.4
Linksys Befvp41	Version 1.42.7
Linksys Rv082	All versions
Linksys Wap55ag	Version 1.0.7
Linksys Wrt54g	Version 1.42.3
Linksys Wrt54g	Version 2.00.8