Denial of Service Vulnerability in IBM BladeCenter Advanced Management Module
CVE-2010-1460

Currently unrated

Key Information:

Vendor: IBM
Status: Advanced Management Module
Vendor: CVE Published:; 16 April 2010

Summary

The IBM BladeCenter with Advanced Management Module (AMM) firmware prior to bpet50g has a vulnerability where improper interrupt sharing for USB and iSCSI can lead to a denial of service. This flaw enables remote attackers to exploit malformed application data sent in TCP packets, resulting in the management module rebooting unexpectedly.

References

http://www-947.ibm.com/systems/support/supportsite.wss/do...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/39499

vdb-entryx_refsource_BID

http://dsecrg.com/pages/vul/show.php?id=149

x_refsource_MISC

Timeline

Vulnerability published
Apr 16, 2010
Vulnerability Reserved
Apr 16, 2010