• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: 3Com OfficeConnect ADSL Wireless 11g Firewall Router Multiple Unspecified Vulnerabilities

Severity: MODERATE

Description:

3Com OfficeConnect ADSL Wireless 11g Firewall Router is networking device that combines an ADSL modem, router, 802.11g wireless access point, four-port switch, and firewall.

3Com OfficeConnect ADSL Wireless 11g Firewall Router is reported prone to multiple unspecified vulnerabilities. The following issues were reported:

An unspecified issue affects the DHCP service.

Another issue is related to displaying two duplicate login IPs.

An unspecified denial of service vulnerability may allow remote attackers to restart the device. This issue occurs due to insufficient boundary checks performed by the application.

The cause and impact of the first two issues is currently unknown. The last issue can result in a denial of service condition.

3Com OfficeConnect ADSL Wireless 11g Firewall Router firmware versions prior to 1.27 are vulnerable to these issues.

**UPDATE: it should be noted that the issue described as an error in displaying two duplicate IPs has been assigned it own BID as more information has become available. Please see '3Com OfficeConnect ADSL Wireless 11g Firewall Router Authentication Bypass Vulnerability' (BID 11438) for more information.

Affected Products:

• 3Com OfficeConnect ADSL Wireless 11g Firewall Router 1.13.0 firmware
• 3Com OfficeConnect ADSL Wireless 11g Firewall Router 1.23.0 firmware
• 3Com OfficeConnect ADSL Wireless 11g Firewall Router 1.24.0 firmware

References:

• 3Com: OfficeConnect ADSL Wireless 11g Firewall Router
• 3Com: OfficeConnect ADSL Wireless 11g Firewall Router - Change Log

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.