Firmware6.00

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

3com

NVD

Published: 2006-10-25

Updated: 2017-07-20

Summary

3Com Switch SS3 4400 switches, firmware 5.11, 6.00 and 6.10 and earlier, allow remote attackers to read the SNMP Read-Write Community string and conduct unauthorized actions via unspecified "normally restricted management packets on the device" that cause the community string to be returned.

Vulnerable Configurations

Part	Description	Count
Hardware	3Com 3Com Superstack 3 Switch 4400 Firmware_5.11 3Com Superstack 3 Switch 4400 Firmware_6.00 3Com Superstack 3 Switch 4400 *	3

References

http://secunia.com/advisories/22818
http://securitytracker.com/id?1017128
http://www.3com.com/securityalert/alerts/3COM-06-004.html
http://www.securityfocus.com/bid/20736
http://www.vupen.com/english/advisories/2006/4184
https://exchange.xforce.ibmcloud.com/vulnerabilities/29779