CVE-2005-0112 | Vulnerability Database | Aqua Security

The web-based administrative interface for 3Com OfficeConnect Wireless 11g Access Point (AP) 1.00.08, and possibly earlier versions before 1.03.07A, allows remote attackers to bypass authentication and obtain sensitive information by directly accessing the (1) config.bin (2) profile.wlp?PN=ggg or (3) event.logs URLs.

Affected Software

Name	Vendor	Start Version	End Version
3crwe454g72	3com	1.0.2 (including)	1.0.2 (including)
3crwe454g72	3com	1.0.2.11 (including)	1.0.2.11 (including)
3crwe454g72	3com	1.0.3.5 (including)	1.0.3.5 (including)

References

http://secunia.com/advisories/13942
http://securitytracker.com/id?1012958
http://www.idefense.com/application/poi/display?id=188\u0026type=vulnerabilities
http://www.securityfocus.com/bid/12322
https://exchange.xforce.ibmcloud.com/vulnerabilities/18994
http://secunia.com/advisories/13942
http://securitytracker.com/id?1012958
http://www.idefense.com/application/poi/display?id=188\u0026type=vulnerabilities
http://www.securityfocus.com/bid/12322
https://exchange.xforce.ibmcloud.com/vulnerabilities/18994

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-0112
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html