CVE-2008-5035

The Resource Monitoring and Control (RMC) daemon in IBM Hardware Management Console (HMC) 7 release 3.2.0 SP1 and 3.3.0 SP2 allows remote attackers to cause a denial of service (daemon crash or hang) via a packet with an invalid length.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/32571	Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=isg1MB02482
http://www-1.ibm.com/support/docview.wss?uid=isg1MB02485
http://www.securityfocus.com/bid/32181
http://www.vupen.com/english/advisories/2008/3051
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4441
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4442
https://exchange.xforce.ibmcloud.com/vulnerabilities/46413
https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01133
https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01134
http://secunia.com/advisories/32571	Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=isg1MB02482
http://www-1.ibm.com/support/docview.wss?uid=isg1MB02485
http://www.securityfocus.com/bid/32181
http://www.vupen.com/english/advisories/2008/3051
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4441
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4442
https://exchange.xforce.ibmcloud.com/vulnerabilities/46413
https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01133
https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01134

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ibm:hardware_management_console:3.2.0:sp1::::::
	cpe:2.3:a:ibm:hardware_management_console:3.3.0:sp2::::::

History

21 Nov 2024, 00:53

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/32571 - Vendor Advisory~~	() http://secunia.com/advisories/32571 - Vendor Advisory
References	~~() http://www-1.ibm.com/support/docview.wss?uid=isg1MB02482 -~~	() http://www-1.ibm.com/support/docview.wss?uid=isg1MB02482 -
References	~~() http://www-1.ibm.com/support/docview.wss?uid=isg1MB02485 -~~	() http://www-1.ibm.com/support/docview.wss?uid=isg1MB02485 -
References	~~() http://www.securityfocus.com/bid/32181 -~~	() http://www.securityfocus.com/bid/32181 -
References	~~() http://www.vupen.com/english/advisories/2008/3051 -~~	() http://www.vupen.com/english/advisories/2008/3051 -
References	~~() http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4441 -~~	() http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4441 -
References	~~() http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4442 -~~	() http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4442 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/46413 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/46413 -
References	~~() https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01133 -~~	() https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01133 -
References	~~() https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01134 -~~	() https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01134 -

Information

Published : 2008-11-10 16:15

Updated : 2024-11-21 00:53

NVD link : CVE-2008-5035

Mitre link : CVE-2008-5035

CVE.ORG link : CVE-2008-5035

JSON object : View

Products Affected

ibm

hardware_management_console

CWE

CWE-399

Resource Management Errors

5.0 /10