Multiple Linksys Devices Password Field Buffer Overflow Vulnerability

The following information has been reported as being from the vendor:

Until the updated firmware is released, we recommend that users downgrade the firmware to an earlier release, or minimize the risk of an attack by disabling remote management of the device.

Reports that fixed firmware for the v1 version of the BEFW11S4 router will not be released have been received.

This information has not been confirmed.

A new firmware revision is available:

Linksys BEFW11S4 1.4.2 .7

Linksys BEFW11S4 1.4.3

Linksys EtherFast BEFSR41 Router 1.42.7

Linksys EtherFast BEFSR11 Router 1.42.7

Linksys EtherFast BEFSRU31 Router 1.42.7

Linksys EtherFast BEFSR41 Router 1.43

Linksys EtherFast BEFSR11 Router 1.43

Linksys EtherFast BEFSRU31 Router 1.43


Privacy Statement
Copyright 2010, SecurityFocus