CVE-2005-0112 - Anglo Catholic Moss

Description

The web-based administrative interface for 3Com OfficeConnect Wireless 11g Access Point (AP) 1.00.08 and possibly earlier versions before 1.03.07A allows remote attackers to bypass authentication and obtain sensitive information by directly accessing the (1) config.bin (2) profile.wlp?PN=ggg or (3) event.logs URLs.

Reference

http://www.idefense.com/application/poi/display?id=188&type=vulnerabilities http://www.securityfocus.com/bid/12322 http://securitytracker.com/id?1012958 http://secunia.com/advisories/13942 https://exchange.xforce.ibmcloud.com/vulnerabilities/18994