Sign-up

ID

VAR-200412-0744


CVE

CVE-2004-2691


TITLE

3Com SuperStack 3 4400 switches Denial of service vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200412-1108

DESCRIPTION

Unspecified vulnerability in 3Com SuperStack 3 4400 switches with firmware version before 3.31 allows remote attackers to cause a denial of service (device reset) via a crafted request to the web management interface. NOTE: the provenance of this information is unknown; details are obtained from third party reports. 3C17210-Us is prone to a denial-of-service vulnerability. 3Com SuperStack 3 4400 switches with firewall versions prior to 3.31 have an unspecified vulnerability

Trust: 1.26

sources: NVD: CVE-2004-2691 // BID: 90333 // VULHUB: VHN-11119

AFFECTED PRODUCTS

vendor:3commodel:superstack 3 switchscope:eqversion:4400_se

Trust: 1.6

vendor:3commodel:superstack 3 switchscope:eqversion:4400

Trust: 1.6

vendor:3commodel:3c17205-usscope:eqversion:*

Trust: 1.0

vendor:3commodel:3c17210-usscope:eqversion:*

Trust: 1.0

vendor:3commodel:3c17210-usscope:eqversion:firmware_3.30

Trust: 0.6

vendor:3commodel:3c17205-usscope:eqversion:firmware_3.30

Trust: 0.6

vendor:3commodel:superstack switch sescope:eqversion:344003.3

Trust: 0.3

vendor:3commodel:superstack switchscope:eqversion:344003.30

Trust: 0.3

vendor:3commodel:3c17210-usscope:eqversion:3.30

Trust: 0.3

vendor:3commodel:3c17205-usscope:eqversion:3.30

Trust: 0.3

sources: BID: 90333 // CNNVD: CNNVD-200412-1108 // NVD: CVE-2004-2691

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2004-2691
value: HIGH

Trust: 1.0

CNNVD: CNNVD-200412-1108
value: HIGH

Trust: 0.6

VULHUB: VHN-11119
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2004-2691
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-11119
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-11119 // CNNVD: CNNVD-200412-1108 // NVD: CVE-2004-2691

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2004-2691

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200412-1108

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200412-1108

EXTERNAL IDS

db:NVDid:CVE-2004-2691

Trust: 2.0

db:OSVDBid:7246

Trust: 1.7

db:SECUNIAid:11934

Trust: 1.7

db:XFid:16497

Trust: 0.9

db:CNNVDid:CNNVD-200412-1108

Trust: 0.7

db:XFid:3

Trust: 0.6

db:BIDid:90333

Trust: 0.4

db:VULHUBid:VHN-11119

Trust: 0.1

sources: VULHUB: VHN-11119 // BID: 90333 // CNNVD: CNNVD-200412-1108 // NVD: CVE-2004-2691

REFERENCES

url:http://www.osvdb.org/7246

Trust: 1.7

url:http://secunia.com/advisories/11934

Trust: 1.7

url:https://exchange.xforce.ibmcloud.com/vulnerabilities/16497

Trust: 1.1

url:http://xforce.iss.net/xforce/xfdb/16497

Trust: 0.9

sources: VULHUB: VHN-11119 // BID: 90333 // CNNVD: CNNVD-200412-1108 // NVD: CVE-2004-2691

CREDITS

Unknown

Trust: 0.3

sources: BID: 90333

SOURCES

db:VULHUBid:VHN-11119
db:BIDid:90333
db:CNNVDid:CNNVD-200412-1108
db:NVDid:CVE-2004-2691

LAST UPDATE DATE

2024-08-14T12:30:57.090000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-11119date:2017-07-29T00:00:00
db:BIDid:90333date:2004-12-31T00:00:00
db:CNNVDid:CNNVD-200412-1108date:2007-10-09T00:00:00
db:NVDid:CVE-2004-2691date:2017-07-29T01:29:16.623

SOURCES RELEASE DATE

db:VULHUBid:VHN-11119date:2004-12-31T00:00:00
db:BIDid:90333date:2004-12-31T00:00:00
db:CNNVDid:CNNVD-200412-1108date:2004-12-31T00:00:00
db:NVDid:CVE-2004-2691date:2004-12-31T05:00:00