The web-based administrative interface for 3Com OfficeConnect Wireless 11g Access Point (AP) 1.00.08, and possibly earlier versions prior to 1.03.07A, allows remote malicious users to bypass authentication and obtain sensitive information by directly accessing the (1) config.bin (2) profile.wlp?PN=ggg or (3) event.logs URLs.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
3com 3crwe454g72 1.0.3.5 |
||
3com 3crwe454g72 1.0.2 |
||
3com 3crwe454g72 1.0.2.11 |