CVE-2002-1426

HP ProCurve Switch 4000M C.07.23 - DoS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1426. PoCs published by FX.

AI-analyzed exploit summary This exploit leverages SNMP write access to crash an HP ProCurve 4000M Switch by writing more than 85 characters to a specific OID, causing a denial of service when the device next accepts a telnet or HTTP connection.

Description

HP ProCurve Switch 4000M C.07.23 allows remote attackers to cause a denial of service (crash) via an SNMP write request containing 85 characters, possibly triggering a buffer overflow.

Exploits (1)

exploitdb WORKING POC VERIFIED

by FX · textdoshardware

https://www.exploit-db.com/exploits/21657

View Code ZIP pw:eip

This exploit leverages SNMP write access to crash an HP ProCurve 4000M Switch by writing more than 85 characters to a specific OID, causing a denial of service when the device next accepts a telnet or HTTP connection.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: HP ProCurve 4000M Switch

Auth required

Prerequisites: SNMP write access to the target device

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2002-07/0338.html

Vendor Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/9708.php

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/5336

Exploit, Vendor Advisory x_refsource_misc

http://www.phenoelit.de/stuff/HP_ProCurve.txt

Scores

EPSS 0.1968

EPSS Percentile 97.1%

Details

Status published

Products (1)

hp/procurve_switch_4000m c.07.23

Published Apr 11, 2003

Tracked Since Feb 18, 2026