CVE-2004-2691

3Com SuperStack 3 4400 Switch < 3.31 - Denial of Service via Web Management Interface

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-2691. PoCs published by aushack, including Metasploit module auxiliary/dos/http/3com_superstack_switch.

AI-analyzed exploit summary This Metasploit module exploits a denial-of-service vulnerability in 3Com SuperStack switches by sending an oversized HTTP request to the management interface, causing the device to stop responding temporarily. The exploit targets versions prior to firmware v2.72.

Description

Unspecified vulnerability in 3Com SuperStack 3 4400 switches with firmware version before 3.31 allows remote attackers to cause a denial of service (device reset) via a crafted request to the web management interface. NOTE: the provenance of this information is unknown; details are obtained from third party reports.

Exploits (1)

metasploit WORKING POC
by aushack · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/http/3com_superstack_switch.rb

This Metasploit module exploits a denial-of-service vulnerability in 3Com SuperStack switches by sending an oversized HTTP request to the management interface, causing the device to stop responding temporarily. The exploit targets versions prior to firmware v2.72.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: 3Com SuperStack Switch (firmware prior to v2.72)
No auth needed
Prerequisites: Network access to the target device's HTTP management interface (port 80)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/16497
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/7246
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/11934

Scores

EPSS 0.7628
EPSS Percentile 99.0%

Details

Status published
Products (4)
3com/3c17205-us
3com/3c17210-us
3com/superstack_3_switch 4400 firmware_3.30
3com/superstack_3_switch 4400_se firmware_3.30
Published Dec 31, 2004
Tracked Since Feb 18, 2026