3com OfficeConnect Remote 812 ADSL Router 1.1.7 does not properly clear memory from DHCP responses, which allows remote attackers to identify the contents of previous HTTP requests by sniffing DHCP packets.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| 3cp4144 | 3com | 1.1.7 (including) | 1.1.7 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=105292451702516\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=105301488426951\u0026w=2
- http://nautopia.coolfreepages.com/vulnerabilidades/3com812_dhcp_leak.htm
- http://www.securityfocus.com/bid/7592
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11999
- http://marc.info/?l=bugtraq\u0026m=105292451702516\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=105301488426951\u0026w=2
- http://nautopia.coolfreepages.com/vulnerabilidades/3com812_dhcp_leak.htm
- http://www.securityfocus.com/bid/7592
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11999