Vulnerabilities > 3Com > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-0276 | Remote vulnerability in 3Com 3Cdaemon 2.0 Multiple format string vulnerabilities in the FTP service in 3Com 3CDaemon 2.0 revision 10 allow remote attackers to cause a denial of service (application crash) via format string specifiers in (1) the username, (2) cd, (3) delete, (4) rename, (5) rmdir, (6) literal, (7) stat, or (8) CWD commands. | 5.0 |
| 2005-05-02 | CVE-2005-0275 | Denial-Of-Service vulnerability in 3Com 3Cdaemon 2.0 TFTP in 3Com 3CDaemon 2.0 revision 10 allows remote attackers to cause a denial of service (application crash) via a GET request containing an MS-DOS device name. | 5.0 |
| 2005-04-14 | CVE-2005-0112 | Information Disclosure vulnerability in 3Com OfficeConnect Wireless 11g Access Point 3Crwe454G72 1.0.2/1.0.2.11/1.0.3.5 The web-based administrative interface for 3Com OfficeConnect Wireless 11g Access Point (AP) 1.00.08, and possibly earlier versions before 1.03.07A, allows remote attackers to bypass authentication and obtain sensitive information by directly accessing the (1) config.bin (2) profile.wlp?PN=ggg or (3) event.logs URLs. | 5.0 |
| 2004-12-31 | CVE-2004-2457 | Remote Denial Of Service vulnerability in 3Com OfficeConnect ADSL Wireless 11g Firewall Router Unspecified vulnerability in 3Com OfficeConnect ADSL 11g Router allows remote attackers to cause a denial of service (crash) via a large amount of UDP traffic. | 5.0 |
| 2004-08-18 | CVE-2004-0476 | Remote 812 ADSL Router Telnet Buffer Overflow vulnerability in 3Com 3Cp4144 1.1.9.4 Buffer overflow in 3Com OfficeConnect Remote 812 ADSL Router 1.1.9.4 allows remote attackers to cause a denial of service (reboot or packet loss) via a long string containing Telnet escape characters to the Telnet port. | 5.0 |
| 2004-04-29 | CVE-2004-1977 | Denial of Service vulnerability in 3Com SuperStack 3 NBX Netset Application Port Scan 3com NBX IP VOIP NetSet Configuration Manager allows remote attackers to cause a denial of service (crash) via a Nessus scan in safeChecks mode. | 5.0 |
| 2003-06-16 | CVE-2003-0291 | Information Disclosure vulnerability in 3Com 3Cp4144 1.1.7 3com OfficeConnect Remote 812 ADSL Router 1.1.7 does not properly clear memory from DHCP responses, which allows remote attackers to identify the contents of previous HTTP requests by sniffing DHCP packets. | 5.0 |
| 2001-10-18 | CVE-2001-0740 | Denial of Service vulnerability in 3Com 3C840-Us and 3Cp4144 3COM OfficeConnect 812 and 840 ADSL Router 4.2, running OCR812 router software 1.1.9 and earlier, allows remote attackers to cause a denial of service via a long string containing a large number of "%s" strings, possibly triggering a format string vulnerability. | 5.0 |
| 2001-09-26 | CVE-2001-1293 | Denial of Service vulnerability in 3Com HomeConnect Cable Modem External with USB Buffer overflow in web server of 3com HomeConnect Cable Modem External with USB (#3CR29223) allows remote attackers to cause a denial of service (crash) via a long HTTP request. | 5.0 |
| 2001-07-21 | CVE-2001-0352 | SNMP agents in 3Com AirConnect AP-4111 and Symbol 41X1 Access Point allow remote attackers to obtain the WEP encryption key by reading it from a MIB when the value should be write-only, via (1) dot11WEPDefaultKeyValue in the dot11WEPDefaultKeysTable of the IEEE 802.11b MIB, or (2) ap128bWepKeyValue in the ap128bWEPKeyTable in the Symbol MIB. | 5.0 |