HP Procurve 4000M Switch Device Reset Denial of Service Vulnerability

ID EDB-ID:21828
Type exploitdb
Reporter Brook Powers
Modified 2002-09-24T00:00:00


HP Procurve 4000M Switch Device Reset Denial Of Service Vulnerability. CVE-2002-1147. Dos exploit for hardware platform

                                            source: http://www.securityfocus.com/bid/5784/info

When multiple Procurve switches are used interconnected, it is common for an administrator to enable a feature allowing each switch to be viewed through a single interface, accessible via the web.

It has been reported that HP Procurve Switches are vulnerable to a denial of service attack, when used in a "stack" configuration. It is possible for an attacker to reset member switches by issuing a device reset command to a vulnerable device. Vulnerable devices do not require authentication before accepting this command.

It should be noted that the web interface is not enabled by default.

http://<IP ADDRESS>/sw2/cgi/device_reset?