CVE-2001-1291

CVSS 9.8 - CRITICAL
Description

The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the server via brute force password guessing.

Affected Products
2
Vendor Product Version
3com superstack_ii_ps_hub_40_firmware -
3com superstack_ii_ps_hub_40 -
References
http://www.securityfocus.com/archive/1/196957
http://www.securityfocus.com/bid/3034
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
http://www.securityfocus.com/archive/1/196957
http://www.securityfocus.com/bid/3034
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
Weakness Types
CWE-307
CVE Information
CVE ID:
CVE-2001-1291
Published:
2001-07-12
Modified:
2026-04-16
CVSS Score:
9.8
Severity:
CRITICAL
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Vendors
3com
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL