[22124] in bugtraq
CR vs. CoreBuilder
daemon@ATHENA.MIT.EDU (John Nemeth)
Sun Aug 5 17:23:15 2001
Message-Id: <200108052112.OAA22327@vtn1.victoria.tc.ca>
From: jnemeth@victoria.tc.ca (John Nemeth)
Date: Sun, 5 Aug 2001 14:12:40 -0700
To: bugtraq@securityfocus.com
I have a 3Com CoreBuilder 3500 running software version 2.1.0 that
has been falling over a lot over the last few days. I attached a
terminal to the console port. One of the times when it fell over, I
noticed a message about a problem with the HTTP server. So, I checked
the configuration and sure enough I had disabled web access. Pointing
a web browser at it, finds that the webserver is still active, it just
always returns a page saying, "Web access denied". Talk about a stupid
way of doing things! Telneting to port 80 and using HEAD gets the
following info:
HTTP/1.1 200 OK
Date: Sat, 05 Aug 1901 12:40:06 GMT
Server: Agranat-EmWeb/R2_3
Content-Type: text/html
Expires: Sat, 05 Aug 1901 12:40:06 GMT
Last-Modified: Sat, 05 Aug 1901 12:40:06 GMT
Cache-Control: no-cache
Pragma: no-cache
I'll upgrade it to the latest software version and see what happens;
but, needless to say I'm thoroughly unimpressed with the way they have
been doing things.
NOTE: I don't have any proof that it is CodeRed that is causing the
CoreBuilder to fall over, but it is highly likely.
