{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-01-20T00:00:00", "descriptions": [{"lang": "en", "value": "The web-based administrative interface for 3Com OfficeConnect Wireless 11g Access Point (AP) 1.00.08, and possibly earlier versions before 1.03.07A, allows remote attackers to bypass authentication and obtain sensitive information by directly accessing the (1) config.bin (2) profile.wlp?PN=ggg or (3) event.logs URLs."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "3com-officeconnect-information-disclosure(18994)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18994"}, {"name": "12322", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/12322"}, {"name": "20050120 3Com OfficeConnect Wireless 11g AP Information Disclosure Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE"], "url": "http://www.idefense.com/application/poi/display?id=188&type=vulnerabilities"}, {"name": "1012958", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1012958"}, {"name": "13942", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/13942"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-0112", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The web-based administrative interface for 3Com OfficeConnect Wireless 11g Access Point (AP) 1.00.08, and possibly earlier versions before 1.03.07A, allows remote attackers to bypass authentication and obtain sensitive information by directly accessing the (1) config.bin (2) profile.wlp?PN=ggg or (3) event.logs URLs."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "3com-officeconnect-information-disclosure(18994)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18994"}, {"name": "12322", "refsource": "BID", "url": "http://www.securityfocus.com/bid/12322"}, {"name": "20050120 3Com OfficeConnect Wireless 11g AP Information Disclosure Vulnerability", "refsource": "IDEFENSE", "url": "http://www.idefense.com/application/poi/display?id=188&type=vulnerabilities"}, {"name": "1012958", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1012958"}, {"name": "13942", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/13942"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T21:05:23.966Z"}, "title": "CVE Program Container", "references": [{"name": "3com-officeconnect-information-disclosure(18994)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18994"}, {"name": "12322", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/12322"}, {"name": "20050120 3Com OfficeConnect Wireless 11g AP Information Disclosure Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE", "x_transferred"], "url": "http://www.idefense.com/application/poi/display?id=188&type=vulnerabilities"}, {"name": "1012958", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1012958"}, {"name": "13942", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/13942"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-0112", "datePublished": "2005-01-22T05:00:00", "dateReserved": "2005-01-18T00:00:00", "dateUpdated": "2024-08-07T21:05:23.966Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:3com:3crwe454g72:1.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "D20F01F7-4C74-4BD2-891F-B5F1204F3910", "vulnerable": true}, {"criteria": "cpe:2.3:h:3com:3crwe454g72:1.0.2.11:*:*:*:*:*:*:*", "matchCriteriaId": "4C47944D-A4CC-4F65-9468-3252A786EB2F", "vulnerable": true}, {"criteria": "cpe:2.3:h:3com:3crwe454g72:1.0.3.5:*:*:*:*:*:*:*", "matchCriteriaId": "F5A26FA1-D651-4673-BBE3-60B94F39619A", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The web-based administrative interface for 3Com OfficeConnect Wireless 11g Access Point (AP) 1.00.08, and possibly earlier versions before 1.03.07A, allows remote attackers to bypass authentication and obtain sensitive information by directly accessing the (1) config.bin (2) profile.wlp?PN=ggg or (3) event.logs URLs."}, {"lang": "es", "value": "El interfaz administrativo basado en web de 3Com OfficeConnect Wireless 11g Access Point (AP) 1.00.08, y posiblemente versiones anteriores a 1.03.07A, permite a atacantes remotos saltarse la autenticaci\u00f3n y obtener informaci\u00f3n sensible accediendo directamente a las URLs de  (1) config.bin, (2) profile.wlp=PN=ggg o (3) event.log."}], "id": "CVE-2005-0112", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-04-14T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://secunia.com/advisories/13942"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1012958"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.idefense.com/application/poi/display?id=188&type=vulnerabilities"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/12322"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18994"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/13942"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1012958"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.idefense.com/application/poi/display?id=188&type=vulnerabilities"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/12322"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18994"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}