CVSS: 10.0EPSS: 40%CPEs: 1EXPL: 7CVE-2006-6183 – 3Com TFTP Service (3CTftpSvc) 2.0.1 - 'Long Transporting Mode' Overflow (PoC)
https://notcve.org/view.php?id=CVE-2006-6183
01 Dec 2006 — Multiple stack-based buffer overflows in 3Com 3CTftpSvc 2.0.1, and possibly earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a long mode field (aka transporting mode) in a (1) GET or (2) PUT command. Vulnerabilidades múltiples de desbordamiento de búfer basado en pila en 3Com 3CTftpSvc 2.0.1, y posiblemente versiones anteriores, permite a atacantes remotos provocar una denegación de servicio (caída) o ejecutar código de su elección mediante un campo mode lar... • https://www.exploit-db.com/exploits/2855 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0CVE-2006-5382
https://notcve.org/view.php?id=CVE-2006-5382
25 Oct 2006 — 3Com Switch SS3 4400 switches, firmware 5.11, 6.00 and 6.10 and earlier, allow remote attackers to read the SNMP Read-Write Community string and conduct unauthorized actions via unspecified "normally restricted management packets on the device" that cause the community string to be returned. El firmware de los conmutadores de 3Com Switch SS3 4400, versiones 5.11, 6.00, 6.10 y anteriores, permite a atacantes remotos la lectura de la cadena SNMP Read-Write Community y realizar acciones no autorizadas mediante... • http://secunia.com/advisories/22818 •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2006-3678
https://notcve.org/view.php?id=CVE-2006-3678
26 Jul 2006 — TippingPoint IPS running the TippingPoint Operating System (TOS) before 2.2.4.6519 allows remote attackers to "force the device into layer 2 fallback (L2FB)", causing a denial of service (page fault), via a malformed packet. TippingPoint IPS bajo TippingPoint Operating System (TOS) anterior a 2.2.4.6519 permite a atacantes remotos "forzar al dispositivo dentro de (L2FB) " (layer 2 fallback), provocando una denegación de servicio (fallo de pagina), a través de paquetes malformados. • http://secunia.com/advisories/21154 • CWE-254: 7PK - Security Features •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2006-0993 – TippingPoint SMS Server Authentication Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2006-0993
09 May 2006 — The web management interface in 3Com TippingPoint SMS Server before 2.2.1.4478 does not restrict access to certain directories, which might allow remote attackers to obtain potentially sensitive information such as configuration settings. This vulnerability may allow attackers to access sensitive information from vulnerable TippingPoint SMS servers. The specific flaw exists within the web management interface. Due to insufficient protections on specific directories, an attacker with access to the web interf... • http://secunia.com/advisories/20058 •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2006-2054
https://notcve.org/view.php?id=CVE-2006-2054
26 Apr 2006 — 3Com Baseline Switch 2848-SFP Plus Model #3C16486 with firmware before 1.0.2.0 allows remote attackers to cause a denial of service (unstable operation) via long DHCP packets. • http://secunia.com/advisories/19756 •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0CVE-2006-0362
https://notcve.org/view.php?id=CVE-2006-0362
22 Jan 2006 — TippingPoint Intrusion Prevention System (IPS) TOS before 2.1.4.6324, and TOS 2.2.x before 2.2.1.6506, allow remote attackers to cause a denial of service (CPU consumption) via an unknown vector, probably involving an HTTP request with a negative number in the Content-Length header. TippingPoint Intrusion Prevention System (IPS) TOS en versiones anteriores a 2.1.4.6324 y TOS 2.2.x en versiones anteriores a 2.2.1.6506, permiten a atacantes remotos provocar una denegación de servicio (consumo de CPU) a través... • http://isc.sans.org/diary.php?storyid=1042 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 0CVE-2005-2020
https://notcve.org/view.php?id=CVE-2005-2020
08 Sep 2005 — Directory traversal vulnerability in the web server for 3Com Network Supervisor 5.0.2 allows remote attackers to read arbitrary files via ".." sequences in the URL to TCP port 21700. • http://secunia.com/advisories/16639 •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2005-2391
https://notcve.org/view.php?id=CVE-2005-2391
27 Jul 2005 — Unknown vulnerability in 3Com OfficeConnect Wireless 11g Access Point before 1.03.12 allows remote attackers to obtain sensitive information via the web interface. Vulnerabilidad desconocida en Com OfficeConnect Wireless 11g Access Point anterior a la 1.03.12 permite que atacantes remotos obtengan información confidencial mediante la interfaz web. • http://secunia.com/advisories/16207 •
CVSS: 8.8EPSS: 3%CPEs: 1EXPL: 1CVE-2005-0419 – 3CServer 1.1 (FTP Server) - Remote Overflow
https://notcve.org/view.php?id=CVE-2005-0419
15 Feb 2005 — Multiple heap-based buffer overflows in 3Com 3CServer allow remote authenticated users to execute arbitrary code via long FTP commands, as demonstrated using the STAT command. Múltiples desbordamientos de búfer basados en 3Com 3CServer permite a usuarios remotos autenticados ejecutar código de su elección mediante comandos FTP largos, como se ha demostrado usando el comando STAT. • https://www.exploit-db.com/exploits/794 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-0275
https://notcve.org/view.php?id=CVE-2005-0275
10 Feb 2005 — TFTP in 3Com 3CDaemon 2.0 revision 10 allows remote attackers to cause a denial of service (application crash) via a GET request containing an MS-DOS device name. • http://marc.info/?l=bugtraq&m=110485674622696&w=2 •