CVE-2007-5419
Last modified
CVE-2007-5419 is a vulnerability of currently unknown severity. The 3Com 3CRWER100-75 router with 1.2.10ww software, when enabling an optional virtual server, configures this server to accept all source IP addresses on the external (Internet) interface unless the user selects other options, which might expose the router to unintended incoming traffic from remote attackers, as demonstrated by setting up a virtual server on port 80, which allows remote attackers to access the web management interface.. EPSS estimates a 2.17% chance of exploitation in the next 30 days.
Description
The 3Com 3CRWER100-75 router with 1.2.10ww software, when enabling an optional virtual server, configures this server to accept all source IP addresses on the external (Internet) interface unless the user selects other options, which might expose the router to unintended incoming traffic from remote attackers, as demonstrated by setting up a virtual server on port 80, which allows remote attackers to access the web management interface.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| 3com | 3crwe554g72t | 3crwer100-75 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-5419?
How severe is CVE-2007-5419?
How do I fix CVE-2007-5419?
Are you affected by CVE-2007-5419?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST