Vulnerability CVE-2001-1291


Published: 2001-07-12   Modified: 2012-02-12

Description:
The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the server via brute force password guessing.

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
3COM -> Superstack ii ps hub 

 References:
http://www.securityfocus.com/archive/1/196957
http://www.securityfocus.com/bid/3034
https://exchange.xforce.ibmcloud.com/vulnerabilities/6855

Copyright 2024, cxsecurity.com

 

Back to Top