CVE Vulnerability

CVE-2008-5035

The Resource Monitoring and Control (RMC) daemon in IBM Hardware Management Console (HMC) 7 release 3.2.0 SP1 and 3.3.0 SP2 allows remote attackers to cause a denial of service (daemon crash or hang) via a packet with an invalid length.

5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

Scope

References
Link Resource
http://secunia.com/advisories/32571 Vendor Advisory
https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01133
https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01134
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4442
http://www.securityfocus.com/bid/32181
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4441
http://www-1.ibm.com/support/docview.wss?uid=isg1MB02482
http://www-1.ibm.com/support/docview.wss?uid=isg1MB02485
http://www.vupen.com/english/advisories/2008/3051
https://exchange.xforce.ibmcloud.com/vulnerabilities/46413
Configurations

Configuration 1

cpe:2.3:a:ibm:hardware_management_console:3.2.0:sp1:*:*:*:*:*:*
cpe:2.3:a:ibm:hardware_management_console:3.3.0:sp2:*:*:*:*:*:*
Information

Published : 2008-11-10 04:15

Updated : 2017-08-08 01:33

NVD link : CVE-2008-5035

Mitre link : CVE-2008-5035

Products Affected
No products.
CWE
CWE-399