CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-1999-1389

US Robotics/3Com Total Control Chassis with Frame Relay between 3.6.22 and 3.7.24 does not properly enforce access filters when the "set host prompt" setting is made for a port, which allows attackers to bypass restrictions by providing the hostname twice at the "host: " prompt.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.4%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=90221101925916&w=2
http://www.securityfocus.com/bid/99
http://marc.info/?l=bugtraq&m=90221101925916&w=2
http://www.securityfocus.com/bid/99

Products affected by CVE-1999-1389

3com » Total Control Netserver Card » Version: N/A

cpe:2.3:h:3com:total_control_netserver_card:-
3com » Total Control Netserver Card » Version: 3.7.24

cpe:2.3:h:3com:total_control_netserver_card:3.7.24

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-1999-1389

Products

Pricing

Contact Us