Security Bulletin: BladeCenter SAS RAID Module (RSSM) are affected by two vulnerabilities (CVE-2014-3018, CVE-2014-3019)

Summary Two vulnerabilities affect BladeCenter SAS RAID Module. Vulnerability Details Abstract Two vulnerabilities affect BladeCenter SAS RAID Module. Content Vulnerability Details: CVE-ID: CVE-2014-3018 Description: IBM SAS Connectivity Module NSSM and SAS RAID Module RSSM contain a denial of...

CVE-2014-3019

IBM BladeCenter SAS Connectivity Module aka NSSM and SAS RAID Module aka RSSM before 1.3.3.006 allow remote attackers to obtain blade and storage-pool access via a TELNET session...

CVE-2014-3018

IBM BladeCenter SAS Connectivity Module aka NSSM and SAS RAID Module aka RSSM before 1.3.3.006 allow remote attackers to cause a denial of service reboot via a flood of IP packets...

CVE-2014-3019

CVE-2014-3019 affects IBM BladeCenter SAS Connectivity Module (NSSM) and SAS RAID Module (RSSM). The issue is an unauthenticated Telnet service that could allow a remote attacker to access blade and storage-pool functions. Affected versions are NSSM/RSSM prior to 1.3.3.006 (and RSSM earlier 1.3.3...