CVE-2001-0352 - SNMP agents in 3Com AirConnect AP-4111 and Symbol 41X1 Access Point allow remote attackers to obtain

CVE-2001-0352

Summary

SNMP agents in 3Com AirConnect AP-4111 and Symbol 41X1 Access Point allow remote attackers to obtain the WEP encryption key by reading it from a MIB when the value should be write-only, via (1) dot11WEPDefaultKeyValue in the dot11WEPDefaultKeysTable of the IEEE 802.11b MIB, or (2) ap128bWepKeyValue in the ap128bWEPKeyTable in the Symbol MIB.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/6232

Vulnerable Configurations

cpe:2.3:h:3com:3crwe747a:*:*:*:*:*:*:*:*
cpe:2.3:h:3com:3crwe747a:*:*:*:*:*:*:*:*
cpe:2.3:a:symbol:41x1_access_point:*:*:*:*:*:*:*:*
cpe:2.3:a:symbol:41x1_access_point:*:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 17-08-2022 - 06:15)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

refmap via4

iss

20010620 Wired-side SNMP WEP key exposure in 802.11b Access Points

Last major update

17-08-2022 - 06:15

Published

21-07-2001 - 04:00

Last modified

17-08-2022 - 06:15