Vulnerabilities > CVE-2004-2691 - Unspecified vulnerability in 3Com 3C17205-Us, 3C17210-Us and Superstack 3 Switch

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
3com
metasploit

Summary

Unspecified vulnerability in 3Com SuperStack 3 4400 switches with firmware version before 3.31 allows remote attackers to cause a denial of service (device reset) via a crafted request to the web management interface. NOTE: the provenance of this information is unknown; details are obtained from third party reports.

Vulnerable Configurations

Part Description Count
Hardware
3Com
4

Metasploit

descriptionThis module causes a temporary denial of service condition against 3Com SuperStack switches. By sending excessive data to the HTTP Management interface, the switch stops responding temporarily. The device does not reset. Tested successfully against a 3300SM firmware v2.66. Reported to affect versions prior to v2.72.
idMSF:AUXILIARY/DOS/HTTP/3COM_SUPERSTACK_SWITCH
last seen2020-03-11
modified2017-11-08
published2009-07-01
references
reporterRapid7
sourcehttps://github.com/rapid7/metasploit-framework/blob/master//modules/auxiliary/dos/http/3com_superstack_switch.rb
title3Com SuperStack Switch Denial of Service