CVE-2002-2159 : Linksys EtherFast Cable/DSL BEFSR11, BEFSR41 and BEFSRU31 with the firmware 1.42.7 upgrade installed opens TCP port 5678

Linksys EtherFast Cable/DSL BEFSR11, BEFSR41 and BEFSRU31 with the firmware 1.42.7 upgrade installed opens TCP port 5678 for remote administration even when the "Block WAN" and "Remote Admin" options are disabled, which allows remote attackers to gain access.

Published 2002-12-31 05:00:00

Updated 2017-07-12 01:29:01

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2002-2159

Probability of exploitation activity in the next 30 days: 1.10%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 82 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2002-2159

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2002-2159

Products affected by CVE-2002-2159

Linksys » Befsr41 » Version: 1.42.7
cpe:2.3:h:linksys:befsr41:1.42.7:*:*:*:*:*:*:*
Matching versions
Linksys » Befsr11 » Version: 1.42.7
cpe:2.3:h:linksys:befsr11:1.42.7:*:*:*:*:*:*:*
Matching versions
Linksys » Befsru31 » Version: 1.42.7
cpe:2.3:h:linksys:befsru31:1.42.7:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2002-2159

Exploit prediction scoring system (EPSS) score for CVE-2002-2159

CVSS scores for CVE-2002-2159

References for CVE-2002-2159

Products affected by CVE-2002-2159