RSS   Vulnerabilities for '3crwe554g72t'   RSS

2007-10-12
 
CVE-2007-5420

CWE-200
 

 
The 3Com 3CRWER100-75 router with 1.2.10ww software, when remote management is disabled but a web server has been configured, serves a web page to external clients, which might allow remote attackers to obtain information about the router's existence and product details.

 
 
CVE-2007-5419

CWE-16
 

 
The 3Com 3CRWER100-75 router with 1.2.10ww software, when enabling an optional virtual server, configures this server to accept all source IP addresses on the external (Internet) interface unless the user selects other options, which might expose the router to unintended incoming traffic from remote attackers, as demonstrated by setting up a virtual server on port 80, which allows remote attackers to access the web management interface.

 

 >>> Vendor: 3COM 36 Products
Hiperarc
Total control netserver card
Superstack ii hub
3crwe747a
3c840-us
3cp4144
Superstack ii ps hub
3cr29223
3cdaemon
Webbngss3nbxnts
3cradsl72
3crwe754g72-a
3c17205-us
3c17210-us
Superstack 3 switch
3crwe454g72
3cserver
3c15100d
Tippingpoint ips tos
Tippingpoint sms server
3c16486
3cr860-95
Superstack 3 switch 4400
3ctftpsvc
Tippingpoint ips
3crtpx505-73
3crx506-96
Tippingpoint 200
Tippingpoint 200e
Tippingpoint 2400e
Tippingpoint 50
Tippingpoint 5000e
Tippingpoint 600e
3cnj220
3crwe554g72t
Wireless 8760 dual-radio


Copyright 2024, cxsecurity.com

 

Back to Top