cbcvebase.
CVE-2004-2691
published 2004-12-31

CVE-2004-2691: Unspecified vulnerability in 3Com SuperStack 3 4400 switches with firmware version before 3.31 allows remote attackers to cause a denial of service (device…

PriorityP432high7.1CVSS 2.0
AVNACMAuNCNINAC
EXPLOIT
EPSS
39.06%
98.4th percentile
Unspecified vulnerability in 3Com SuperStack 3 4400 switches with firmware version before 3.31 allows remote attackers to cause a denial of service (device reset) via a crafted request to the web management interface. NOTE: the provenance of this information is unknown; details are obtained from third party reports.

Affected

2 ranges
VendorProductVersion rangeFixed in
3comsuperstack_3_switch
3comsuperstack_3_switch

Detection & IOCsextracted from sources · hover to see the quote

  • Denial of service is triggered by sending excessive data to the HTTP Management interface of 3Com SuperStack switches; monitor for abnormally large or malformed HTTP requests to the switch web management port.
  • A Metasploit auxiliary module exists for this DoS: modules/auxiliary/dos/http/3com_superstack_switch.rb — presence of this module in use should be treated as an active exploitation indicator.
  • ·NVD describes the impact as a 'device reset', but the Metasploit module contradicts this — the device does NOT reset, it only stops responding temporarily.
  • ·NVD states the vulnerability affects firmware before 3.31 on the 4400 model, but the Metasploit module was tested against a 3300SM running firmware v2.66 and reports the issue affects versions prior to v2.72 — affected firmware version range and model scope may be broader than the NVD entry indicates.
  • ·NVD acknowledges low confidence in the vulnerability details, as they were sourced from third-party reports.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.