3Com HiPer Access Router Card (HiperARC) IAC Packet Flood DoS
Remote / Network Access
Denial of Service
Loss of Availability
3COM HiPer Access Router Card (HiperARC) contains a flaw that may allow a remote denial of service. The issue is triggered when sending a flood of IAC (Inquiry Access Code) packets to the telnet port, which will cause the card to reboot resulting in a loss of availability.
Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: Create a telnet access list of trusted hosts and do not allow any telnet sessions from outside your network.