13 matches found
EUVD-2010-2658
Malware in sbrugna...
EUVD-2010-1487
Malware in sbrugna...
Security Bulletin: Vulnerability in IBM Advanced Management Module (CVE-2013-4007)
Summary Cross-Site Scripting XSS vulnerability is found in advsw.php page of IBM advanced Management Module. Vulnerability Details Abstract Cross-Site Scripting XSS vulnerability is found in advsw.php page of IBM advanced Management Module. Vulnerabily Details:| CVE ID: CVE-2013-4007 Description:...
CVE-2010-2655
Directory traversal vulnerability in private/filemanagement.php on the IBM BladeCenter with Advanced Management Module AMM firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, allows remote authenticated users to list arbitrary directories and possibly have unspecified other...
CVE-2010-2656
The IBM BladeCenter with Advanced Management Module AMM firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download 1 logs or 2 core files via direct requests...
Improper access control
The IBM BladeCenter with Advanced Management Module AMM firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download 1 logs or 2 core files via direct requests...
Directory traversal
Directory traversal vulnerability in private/filemanagement.php on the IBM BladeCenter with Advanced Management Module AMM firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, allows remote authenticated users to list arbitrary directories and possibly have unspecified other...
CVE-2010-2655
Directory traversal vulnerability in private/filemanagement.php on the IBM BladeCenter with Advanced Management Module AMM firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, allows remote authenticated users to list arbitrary directories and possibly have unspecified other...
CVE-2010-2656
CVE-2010-2656 affects IBM BladeCenter AMM firmware BPET48L (and possibly earlier 4.7/5.0). The issue: sensitive data is stored under the web root with insufficient access control, enabling remote attackers to download sensitive files (e.g., logs or core files) via direct requests, demonstrated by...
CVE-2010-2654
CVE-2010-2654 affects IBM BladeCenter with AMM firmware BPET48L (and possibly earlier versions before 4.7 and 5.0). The vulnerability involves multiple reflected cross-site scripting (XSS) flaws in web interfaces, enabling remote attackers to inject arbitrary script/HTML via parameters in several...
CVE-2010-2656
The IBM BladeCenter with Advanced Management Module AMM firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download 1 logs or 2 core files via direct requests...
[DSECRG-09-049] IBM BladeCenter Management Module - DoS vulnerability
Digital Security Research Group DSecRG Advisory DSECRG-09-049 Application: IBM BladeCenter Managmet Module Versions Affected: before BPET50G Vendor URL: http://www-03.ibm.com/systems/bladecenter/ Bug: DoS Exploits: YES Reported: 24.07.2009 Vendor response: 26.07.2009 Date of Public Advisory:...
CVE-2010-1460
The vulnerability CVE-2010-1460 affects the IBM BladeCenter AMM firmware prior to bpet50g. The issue is improper interrupt sharing for USB and iSCSI, allowing remote attackers to cause a denial of service resulting in a management module reboot via TCP packets containing malformed application dat...