Vulnerabilities > 3Com > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-03-04 | CVE-2008-6395 | USE of Externally-Controlled Format String vulnerability in 3Com Wireless 8760 Dual-Radio The web management interface in 3Com Wireless 8760 Dual Radio 11a/b/g PoE Access Point allows remote attackers to cause a denial of service (device crash) via a malformed HTTP POST request. | 7.8 |
| 2007-07-11 | CVE-2007-3711 | Improper Input Validation vulnerability in 3Com Tippingpoint IPS TOS Unspecified vulnerability in TOS 2.1.x, 2.2.x before 2.2.5, and 2.5.x before 2.5.2 on TippingPoint IPS allows remote attackers to avoid detection by sending certain fragmented packets. | 7.5 |
| 2007-07-11 | CVE-2007-3701 | Improper Input Validation vulnerability in multiple products TippingPoint IPS before 20070710 does not properly handle a hex-encoded alternate Unicode '/' (slash) character, which might allow remote attackers to send certain network traffic and avoid detection, as demonstrated by a cmd.exe attack. | 7.5 |
| 2007-05-16 | CVE-2007-2734 | Remote Security vulnerability in 3Crx506-96 The 3Com TippingPoint IPS do not properly handle certain full-width and half-width Unicode character encodings in an HTTP POST request, which might allow remote attackers to evade detection of HTTP traffic. | 7.5 |
| 2006-10-25 | CVE-2006-5382 | Information Disclosure vulnerability in 3Com Superstack 3 Switch 4400 Firmware5.11/Firmware6.00 3Com Switch SS3 4400 switches, firmware 5.11, 6.00 and 6.10 and earlier, allow remote attackers to read the SNMP Read-Write Community string and conduct unauthorized actions via unspecified "normally restricted management packets on the device" that cause the community string to be returned. | 7.5 |
| 2005-04-27 | CVE-2005-0419 | Remote Security vulnerability in 3Com 3Cserver 1.1 Multiple heap-based buffer overflows in 3Com 3CServer allow remote authenticated users to execute arbitrary code via long FTP commands, as demonstrated using the STAT command. | 7.5 |
| 2004-12-31 | CVE-2004-2691 | Denial-Of-Service vulnerability in 3Com 3C17205-Us, 3C17210-Us and Superstack 3 Switch Unspecified vulnerability in 3Com SuperStack 3 4400 switches with firmware version before 3.31 allows remote attackers to cause a denial of service (device reset) via a crafted request to the web management interface. network 3com | 7.1 |
| 2004-10-13 | CVE-2004-1596 | Information Disclosure and Authentication Bypass vulnerability in 3Com 3CRADSL72 ADSL Wireless Router The 3COM Wireless router 3CRADSL72 running Boot Code 1.3d allows remote attackers to gain sensitive information such as passwords and router settings via a direct HTTP request to app_sta.stm. | 7.5 |
| 2002-12-31 | CVE-2002-2300 | Buffer Errors vulnerability in 3Com Webbngss3Nbxnts 4.0.17/4.1.21/4.1.4 Buffer overflow in ftpd 5.4 in 3Com NBX 4.0.17 or ftpd 5.4.2 in 3Com NBX 4.1.4 allows remote attackers to cause a denial of service (crash) via a long CEL command. | 7.5 |
| 2002-10-04 | CVE-2002-0888 | Unspecified vulnerability in 3Com 3Cp4144 1.1.7/1.1.9 3Com OfficeConnect Remote 812 ADSL Router, firmware 1.1.9 and 1.1.7, allows remote attackers to bypass port access restrictions by connecting to an approved port and quickly connecting to the desired port, which is allowed by the router. | 7.5 |