3Com Switch SS3 4400 switches, firmware 5.11, 6.00 and 6.10 and earlier, allow remote attackers to read the SNMP Read-Write Community string and conduct unauthorized actions via unspecified normally restricted management packets on the device that cause the community string to be returned.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Superstack_3_switch_4400 | 3com | * | firmware_6.10 (including) |
| Superstack_3_switch_4400 | 3com | firmware_5.11 (including) | firmware_5.11 (including) |
| Superstack_3_switch_4400 | 3com | firmware_6.00 (including) | firmware_6.00 (including) |
References
- http://secunia.com/advisories/22818
- http://securitytracker.com/id?1017128
- http://www.3com.com/securityalert/alerts/3COM-06-004.html
- http://www.securityfocus.com/bid/20736
- http://www.vupen.com/english/advisories/2006/4184
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29779
- http://secunia.com/advisories/22818
- http://securitytracker.com/id?1017128
- http://www.3com.com/securityalert/alerts/3COM-06-004.html
- http://www.securityfocus.com/bid/20736
- http://www.vupen.com/english/advisories/2006/4184
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29779