MiracleLinux 4 : sblim-cim-client2-2.1.3-2.AXS4 (AXSA:2012-596:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-596:01 advisory. The purpose of this package is to provide a CIM Client Class Library for Java applications. It complies to the DMTF standard CIM Operations over HTTP and...

EUVD-2012-2321

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2012-2328

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - internal/cimxml/sax/NodeFactory.java in Standards-Based Linux Instrumentation for Manageability SBLIM Common Information Model CIM Client aka sblim-cim-client2...

Fedora: Security Advisory for sblim-cim-client (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 40 Update: sblim-cim-client-1.3.9.3-34.fc40

The purpose of this package is to provide a CIM Client Class Library for Java applications. It complies to the DMTF standard CIM Operations over HTTP and intends to be compatible with JCP JSR48 once it becomes available. To learn more about DMTF visit http://www.dmtf.org. More info about the Java...

Hash Collision Attack

The SBLIM CIM Client is susceptible to hash collision attack. Since it uses HashMap to parse XML inputs, it allows the attacker to predict hashes and input malicious CIM-XML message from a WBEM Web-Based Enterprise Management server, causing high CPU consumption...

Security Bulletin: Vulnerability in RC4 stream cipher affects IBM XIV Storage System Gen2 (CVE-2015-2808)

Summary The RC4 “Bar Mitzvah” Attack for SSL/TLS affects IBM XIV Storage System Gen2. Vulnerability Details CVEID: CVE-2015-2808 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information. An attacker could exploit...

CVE-2012-2328

internal/cimxml/sax/NodeFactory.java in Standards-Based Linux Instrumentation for Manageability SBLIM Common Information Model CIM Client aka sblim-cim-client2 before 2.1.12 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent...

Code injection

internal/cimxml/sax/NodeFactory.java in Standards-Based Linux Instrumentation for Manageability SBLIM Common Information Model CIM Client aka sblim-cim-client2 before 2.1.12 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent...

CVE-2012-2328

CVE-2012-2328 affects the Standards-Based Linux Instrumentation for Manageability (SBLIM) CIM Client (sblim-cim-client2) before 2.1.12. The flaw is in internal/cimxml/sax/NodeFactory.java, which computes hash values without restricting hash collisions, allowing a context-dependent attacker to cau...

CVE-2012-2328

internal/cimxml/sax/NodeFactory.java in Standards-Based Linux Instrumentation for Manageability SBLIM Common Information Model CIM Client aka sblim-cim-client2 before 2.1.12 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent...

CentOS 6 : sblim-cim-client2 (CESA-2012:0987)

Updated sblim-cim-client2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, i...

sblim security update

CentOS Errata and Security Advisory CESA-2012:0987 Updated sblim-cim-client2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS ba...

Low: Red Hat Security Advisory: sblim-cim-client2 security update

Updated sblim-cim-client2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, i...