[2/5] 3Com IntelliJack Switch NJ220 Loopback Packet Processing Denial of Service

June 29th, 2007 by

[2/5] 3Com IntelliJack Switch NJ220 Loopback Packet Processing Denial of Service

:A vulnerability has been reported in 3Com IntelliJack Switch NJ220, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).The vulnerability is caused due to an error when NJ220 processes loopback packets with a length field of zero. This can be exploited to cause NJ220 to restart and stop sending event packets to the Central Configuration Manager utility via a specially crafted loopback packet.The vulnerability is reported in versions prior to 2.0.23.Solution:Update to version 2.0.23.Provided and/or discovered by:Reported by the vendor.Original Advisory:http://support.3com.com/infodeli/tools/nj/nj220_02_00_23_readme.pdf

Original post by pooja

[2/5] 3Com IntelliJack Switch NJ220 Loopback Packet Processing Denial of Service

Related Articles:

[2/5] 3Com TippingPoint IPS Extended Unicode Detection Bypass

[2/5] 3Com TippingPoint IPS Fragmented Packets Detection Bypass

[2/5] SNMPc Server Packet Processing Denial of Service Vulnerability

[3/5] I Hear U Multiple Denial of Service Vulnerabilities

[4/5] Live for Speed Multiple Vulnerabilities

Posted in Advisories - Exploits | | [2/5] 3Com IntelliJack Switch NJ220 Loopback Packet Processing Denial of Service

<< [2/5] Avaya Products Shadow “useradd.c” Insecure Mailbox File Permissions | [3/5] Ubuntu update for MadWifi >>

Cybertrion Systems

[2/5] 3Com IntelliJack Switch NJ220 Loopback Packet Processing Denial of Service

Categories

Archives:

Search:

Meta: