Lucene search
LenovoCVELIST:CVE-2017-3774HistoryApr 12, 2018 - 12:00 a.m.
CVE-2017-3774
2018-04-1200:00:00
lenovo
www.cve.org
1
A stack overflow vulnerability was discovered within the web administration service in Integrated Management Module 2 (IMM2) earlier than version 4.70 used in some Lenovo servers and earlier than version 6.60 used in some IBM servers. An attacker providing a crafted user ID and password combination can cause a portion of the authentication routine to overflow its stack, resulting in stack corruption.
CNA Affected
[
{
"product": "IMM2",
"vendor": "Lenovo Group Ltd.",
"versions": [
{
"status": "affected",
"version": "Earlier than 4.40"
}
]
},
{
"product": "IMM2",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "Earlier than 6.60"
}
]
}
]Related
lenovo
lenovo
IMM2 Web Service Stack Overflow - Lenovo Support US
2018-04-12 17:17:00
IMM2 Web Service Stack Overflow - NL
2018-04-12 17:17:00
prion
prion
Stack overflow
2018-04-19 14:29:00
cve
cve
CVE-2017-3774
2018-04-19 14:29:00
nvd
nvd
CVE-2017-3774
2018-04-19 14:29:00