Description
3Com Switch SS3 4400 switches, firmware 5.11, 6.00 and 6.10 and earlier, allow remote attackers to read the SNMP Read-Write Community string and conduct unauthorized actions via unspecified "normally restricted management packets on the device" that cause the community string to be returned.
Affected products
- 3com / superstack_3_switch_4400firmware_6.10
- 3com / superstack_3_switch_4400firmware_5.11 – firmware_5.11
- 3com / superstack_3_switch_4400firmware_6.00 – firmware_6.00
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/22818
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/29779
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/4184
- MISChttp://www.3com.com/securityalert/alerts/3COM-06-004.html
- MISChttp://securitytracker.com/id?1017128
- MISChttp://www.securityfocus.com/bid/20736