CVE-2006-4682 - Multiple unspecified vulnerabilities in IBM Director before 5.10 allow remote attackers to cause a d

CVE-2006-4682

Summary

Multiple unspecified vulnerabilities in IBM Director before 5.10 allow remote attackers to cause a denial of service (crash) via unspecified vectors involving (1) malformed WMI CIM server requests and (2) malformed packets. This vulnerability is addressed in the following product release: IBM, Director, 5.10

References

ftp://ftp.software.ibm.com/pc/pccbbs/pc_servers_pdf/dir5.10_docs_relnotes.pdf
http://secunia.com/advisories/21802
http://www.securityfocus.com/bid/19915
http://www.vupen.com/english/advisories/2006/3532

Vulnerable Configurations

cpe:2.3:a:ibm:director:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:director:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:director:3.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:director:3.1:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 08-03-2011 - 02:41)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

aixapar	IC46283 IC46730 IC46959
bid	19915
secunia	21802
vupen	ADV-2006-3532

Last major update

08-03-2011 - 02:41

Published

11-09-2006 - 17:04

Last modified

08-03-2011 - 02:41