CVE-2006-5382
Severity Score
7.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
3Com Switch SS3 4400 switches, firmware 5.11, 6.00 and 6.10 and earlier, allow remote attackers to read the SNMP Read-Write Community string and conduct unauthorized actions via unspecified "normally restricted management packets on the device" that cause the community string to be returned.
El firmware de los conmutadores de 3Com Switch SS3 4400, versiones 5.11, 6.00, 6.10 y anteriores, permite a atacantes remotos la lectura de la cadena SNMP Read-Write Community y realizar acciones no autorizadas mediante paquetes de gestiĆ³n normalmente restringidos en el dispositivo, que provocan que la cadena community sea devuelta.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2006-10-18 CVE Reserved
- 2006-10-25 CVE Published
- 2023-10-06 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (6)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/22818 | Third Party Advisory | |
| http://securitytracker.com/id?1017128 | Vdb Entry | |
| http://www.3com.com/securityalert/alerts/3COM-06-004.html | X_refsource_confirm | |
| http://www.securityfocus.com/bid/20736 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2006/4184 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/29779 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| 3com Search vendor "3com" | Superstack 3 Switch 4400 Search vendor "3com" for product "Superstack 3 Switch 4400" | <= firmware_6.10 Search vendor "3com" for product "Superstack 3 Switch 4400" and version " <= firmware_6.10" | - |
Affected
| ||||||
| 3com Search vendor "3com" | Superstack 3 Switch 4400 Search vendor "3com" for product "Superstack 3 Switch 4400" | firmware_5.11 Search vendor "3com" for product "Superstack 3 Switch 4400" and version "firmware_5.11" | - |
Affected
| ||||||
| 3com Search vendor "3com" | Superstack 3 Switch 4400 Search vendor "3com" for product "Superstack 3 Switch 4400" | firmware_6.00 Search vendor "3com" for product "Superstack 3 Switch 4400" and version "firmware_6.00" | - |
Affected
| ||||||