Vulnerabilities > CVE-2003-0291 - Information Disclosure vulnerability in 3Com 3Cp4144 1.1.7

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

3com

NVD

Published: 2003-06-16

Updated: 2017-07-11

Summary

3com OfficeConnect Remote 812 ADSL Router 1.1.7 does not properly clear memory from DHCP responses, which allows remote attackers to identify the contents of previous HTTP requests by sniffing DHCP packets.

Vulnerable Configurations

Part	Description	Count
Hardware	3Com 3Com 3Cp4144 1.1.7	1

References

http://marc.info/?l=bugtraq&m=105292451702516&w=2
http://marc.info/?l=bugtraq&m=105301488426951&w=2
http://nautopia.coolfreepages.com/vulnerabilidades/3com812_dhcp_leak.htm
http://www.securityfocus.com/bid/7592
https://exchange.xforce.ibmcloud.com/vulnerabilities/11999