Vulnerability CVE-2002-0888


Published: 2002-10-04   Modified: 2012-02-12

Description:
3Com OfficeConnect Remote 812 ADSL Router, firmware 1.1.9 and 1.1.7, allows remote attackers to bypass port access restrictions by connecting to an approved port and quickly connecting to the desired port, which is allowed by the router.

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
3COM -> 3cp4144 

 References:
http://www.securityfocus.com/bid/4841
http://www.iss.net/security_center/static/9185.php
http://archives.neohapsis.com/archives/bugtraq/2002-06/0102.html
http://archives.neohapsis.com/archives/bugtraq/2002-05/0230.html

Copyright 2024, cxsecurity.com

 

Back to Top