NASLDB: 3Com Superstack 3 Switch Multiple Default Accounts
General
ID: 10747
Name: 3Com Superstack 3 Switch Multiple Default Accounts
Summary: Logs into 3Com Superstack 3 switches with default passwords.
Credits: –
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Temporal Vector: –
Port: 23
Family: Misc.
Type: Remote
Description
The 3Com Superstack 3 switch has the default passwords set.
The attacker could use these default passwords to gain remote
access to your switch and then reconfigure the switch. These
passwords could also be potentially used to gain sensitive
information about your network from the switch.
Exploiting
Exploit Available: True
Exploitability Ease: Exploits are available
Sources
CVE: CVE-1999-0508
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: 2002/09/12
Patch Release: –
Plugin Release: 2001/08/29
Plugin
Version: 1.23
Filename: 3com_switches.nasl
Filesize: 3168 bytes
MD5 Hash: 446ad0cc93cbac700cd07b92d72f1f71
Identification: –
Require Keys: –
Dependencies: –
Copyright: This script is Copyright© 2001-2012 Patrik Karlsson
- Latest Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack