- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 21828
- Проверка EDB
-
- Пройдено
- Автор
- BROOK POWERS
- Тип уязвимости
- DOS
- Платформа
- HARDWARE
- CVE
- cve-2002-1147
- Дата публикации
- 2002-09-24
Код:
source: https://www.securityfocus.com/bid/5784/info
When multiple Procurve switches are used interconnected, it is common for an administrator to enable a feature allowing each switch to be viewed through a single interface, accessible via the web.
It has been reported that HP Procurve Switches are vulnerable to a denial of service attack, when used in a "stack" configuration. It is possible for an attacker to reset member switches by issuing a device reset command to a vulnerable device. Vulnerable devices do not require authentication before accepting this command.
It should be noted that the web interface is not enabled by default.
http://<IP ADDRESS>/sw2/cgi/device_reset?- Источник
- www.exploit-db.com
