I'm seeing strange incoming connections, which typically would be blocked and denied, coming in at an alarming rate on some BEFVP41 V1 devices out there on the internet. Typically trying to get into ports 1024, 1025, and 1026 from very foreign addresses. I don't see the same activity on deployed BEFVP41 V2 devices.
I know they use different hardware and different firmware revisions, so anything is possible, but I haven't seen anything on the web, yet, about any new exploits. I know in the past you could do 'bad things' with the SNMP support. I really wish they hadn't stopped making firmware revisions in 2003 for it.
Ideally I'd love to set them up with a nice set of Cisco ASA/PIX devices and replace all the Linksys but that is just my personal preference for setups like this. If the firmware is unfixable and somehow exploitable, the V1's might have to be replaced anyway.