Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Linksys BEFVP41 SNMP information disclosure

Linksys BEFVP41 SNMP information disclosure

by Mario Miri on April 14th, 2003 Linksys BEFVP41 VPN router is reportedly prone to information disclosure attack. SNMP community strings (which are world-readable) contain sensitive information which can be used for further attacks.


Vulnerable:
Linksys BEFVP41 1.40.3f
Linksys BEFVP41 1.40.4


Exploit / Proof of concept:
http://download.xatrix.org/prf/linksys1.txt


Solution:
Currently there are no vendor supplied patches for this issue.


Discovered by:
Branson Matheson, [email protected]


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »