CVE-2008-5035 - The Resource Monitoring and Control (RMC) daemon in IBM Hardware Management Console (HMC) 7 release

CVE-2008-5035

Summary

The Resource Monitoring and Control (RMC) daemon in IBM Hardware Management Console (HMC) 7 release 3.2.0 SP1 and 3.3.0 SP2 allows remote attackers to cause a denial of service (daemon crash or hang) via a packet with an invalid length.

References

Vulnerable Configurations

cpe:2.3:a:ibm:hardware_management_console:3.2.0:sp1:*:*:*:*:*:*
cpe:2.3:a:ibm:hardware_management_console:3.2.0:sp1:*:*:*:*:*:*
cpe:2.3:a:ibm:hardware_management_console:3.3.0:sp2:*:*:*:*:*:*
cpe:2.3:a:ibm:hardware_management_console:3.3.0:sp2:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 08-08-2017 - 01:33)
Impact:
Exploitability:

CWE

CWE-399

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

aixapar	MB02482 MB02485
bid	32181
confirm	http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4441 http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4442 https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01133 https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01134
secunia	32571
vupen	ADV-2008-3051
xf	ibm-hmc-rmc-dos(46413)

Last major update

08-08-2017 - 01:33

Published

10-11-2008 - 16:15

Last modified

08-08-2017 - 01:33