Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The web-based administrative interface for 3Com OfficeConnect Wireless 11g Access Point (AP) 1.00.08, and possibly earlier versions before 1.03.07A, allows remote attackers to bypass authentication and obtain sensitive information by directly accessing the (1) config.bin (2) profile.wlp?PN=ggg or (3) event.logs URLs.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
3Com OfficeConnect无线11g AP信息泄露漏洞
Vulnerability Description
3Com OfficeConnect Wireless 11g Access Point是一款支持11g协议的无线路由器。 3Com OfficeConnect无线AP在处理接口访问时存在问题,远程攻击者可以利用这个漏洞获得路由器敏感信息。 3Com OfficeConnect无线AP通过WEB服务器在80口提供管理接口,这个接口默认可由内部以太接口和无线接口访问,问题是对部分脚本的访问缺少充分权限验证,提交如下URL请求可获得设备敏感信息: /main/config.bin /main/profile.
CVSS Information
N/A
Vulnerability Type
N/A