Web configuration utility in HP AdvanceStack hubs J3200A through J3210A with firmware version A.03.07 and previous versions, allows unauthorized users to bypass authentication via a direct HTTP request to the web_access.html file, which allows the user to change the switch's configuration and modify the administrator password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp advancestack 10base-t switching hub j3203a a.03.07 |
||
hp advancestack 10base-t switching hub j3204a a.03.07 |
||
hp advancestack 10base-t switching hub j3200a a.03.07 |
||
hp advancestack 10base-t switching hub j3201a a.03.07 |
||
hp advancestack 10base-t switching hub j3202a a.03.07 |
||
hp advancestack 10base-t switching hub j3205a a.03.07 |
||
hp advancestack 10base-t switching hub j3210a a.03.07 |