A stack overflow vulnerability was discovered within the web administration service in Integrated Management Module 2 (IMM2) earlier than version 4.70 used in some Lenovo servers and earlier than version 6.60 used in some IBM servers. An attacker providing a crafted user ID and password combination can cause a portion of the authentication routine to overflow its stack, resulting in stack corruption.
References
Link | Resource |
---|---|
https://support.lenovo.com/us/en/product_security/LEN-19586 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: lenovo
Published: 2018-04-12T00:00:00
Updated: 2018-04-19T13:57:01
Reserved: 2016-12-16T00:00:00
Link: CVE-2017-3774
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-04-19T14:29:00.357
Modified: 2018-05-24T16:27:03.247
Link: CVE-2017-3774
JSON object: View
Redhat Information
No data.
CWE