3Com, HP, and H3C Switches SNMP Configuration Lets Remote Users Take Administrative Actions
3COM, and H3C Routers & Switches
A vulnerability was reported in 3Com, HP, and H3C Switches.
A remote user with knowledge of the SNMP public community string can access potentially sensitive data (e.g., user names, passwords) in the h3c-user.mib and hh3c-user.mib MIBs via SNMP and then use that data to take control of the target device.
A remote user can take administrative actions on the target system.