Title: 3Com Wireless 8760 Dual-Radio 11a/b/g PoE Multiple Security Vulnerabilities
Severity: HIGH
Description:
3Com Wireless 8760 Dual-Radio 11a/b/g PoE Access Point is a wireless solution for enterprises.
The device is prone to multiple security vulnerabilities:
1. An authentication-bypass issue affects the web-based management interface. The device uses the source IP address of the administrator as the only source of authentication data. Attackers can spoof this address and gain access to administrative functions or change device settings via the 'advanced.htm' script.
2. An HTML-injection issue affects the 'title' tag of the login page. Attackers can inject arbitrary script code via the Simple Network Management Protocol (SNMP).
Successfully exploiting these issues will allow an attacker to obtain administrative credentials, bypass security mechanisms, or run attacker-supplied HTML and script code in the context of the web administration interface. The attacker may then be able to steal cookie-based authentication credentials or control how the site is rendered to the user; other attacks are also possible.
Affected Products:
- 3Com 3Com Wireless 8760 Dual-Radio 11a/b/g PoE
References:
- 3Com: Product Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
