21 matches found
EUVD-2013-3962
Malware in sbrugna...
EUVD-2003-0973
Malware in sbrugna...
EUVD-2021-27003
Malware in sbrugna...
EUVD-2017-12891
Malware in sbrugna...
EUVD-2004-1753
Malware in sbrugna...
EUVD-2018-20688
Malware in sbrugna...
EUVD-2013-3969
Malware in sbrugna...
Security Bulletin: Risks of Using the Intelligent Platform Management Interface (IPMI) on the Integrated Management Module (IMM) and Integrated Management Module II (IMM2) (CVE-2013-4038, CVE-2013-4037, CVE-2013-4031)
Summary Various risks with the Intelligent Platform Management Interface IPMI have been identified and documented in the IT security community. Because the IMM and IMM2 provide IPMI access by default, a subset of these identified risks are applicable to IBM servers that include the IMM and IMM2...
System Management Mode (SMM) BIOS Vulnerability in some legacy System x servers - Lenovo Support US
Lenovo Security Advisory: LEN-38625 Potential Impact: Privilege escalation Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2020-8332 Summary Description: A potential vulnerability in the SMI callback function used in the legacy BIOS mode USB drivers in some legacy Lenovo and...
Security Bulletin: Integrated Management Module II (IMM2) is affected by the following OpenSSL vulnerabilities: CVE-2014-0224,
Summary Security vulnerabilities have been discovered in OpenSSL that were reported on June 5, 2014 by the OpenSSL Project. Vulnerability Details Abstract Security vulnerabilities have been discovered in OpenSSL that were reported on June 5, 2014 by the OpenSSL Project. Content Vulnerability...
CVE-2017-3774
A stack overflow vulnerability was discovered within the web administration service in Integrated Management Module 2 IMM2 earlier than version 4.70 used in some Lenovo servers and earlier than version 6.60 used in some IBM servers. An attacker providing a crafted user ID and password combination...
CVE-2017-3774
CVE-2017-3774 describes a stack overflow in the IMM2 web administration service. The vulnerability affects IMM2 firmware earlier than 4.70 on Lenovo servers and earlier than 6.60 on some IBM servers, where a crafted user ID and password can overflow the authentication routine’s stack, causing sta...
CVE-2013-4037
The RAKP protocol support in the Intelligent Platform Management Interface IPMI implementation in Integrated Management Module IMM and Integrated Management Module II IMM2 on IBM BladeCenter, Flex System, System x iDataPlex, and System x3 servers sends a password hash to the client, which makes i...
Design/Logic Flaw
The RAKP protocol support in the Intelligent Platform Management Interface IPMI implementation in Integrated Management Module IMM and Integrated Management Module II IMM2 on IBM BladeCenter, Flex System, System x iDataPlex, and System x3 servers sends a password hash to the client, which makes i...
CVE-2013-4038
The Intelligent Platform Management Interface IPMI implementation in Integrated Management Module IMM on IBM BladeCenter, Flex System, System x iDataPlex, and System x3 servers uses cleartext for password storage, which allows context-dependent attackers to obtain sensitive information by reading...
CVE-2013-4031
The Intelligent Platform Management Interface IPMI implementation in Integrated Management Module IMM and Integrated Management Module II IMM2 on IBM BladeCenter, Flex System, System x iDataPlex, and System x3 servers has a default password for the IPMI user account, which makes it easier for...
CVE-2004-1759
Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, allows remote attackers to cause a denial of service CPU consumption via arbitrary packets to TCP port 14247, as demonstrated using port scanning...
CVE-2004-1759
Cisco voice products running the IBM Director Agent on IBM servers prior to OS 2000.2.6 are affected by CVE-2004-1759. The issue allows remote attackers to cause a denial of service (CPU consumption) by sending arbitrary packets to TCP port 14247, demonstrated via port scanning. The provided docu...
Voice Product Vulnerabilities on IBM Servers
...
CVE-2003-0983
Cisco Unity on IBM servers is shipped with default settings that should have been disabled by the manufacturer, which allows local or remote attackers to conduct unauthorized activities via 1 a "bubba" local user account, 2 an open TCP port 34571, or 3 when a local DHCP server is unavailable, a...