CVE-2017-3774
N/A
N/A
Summary
A stack overflow vulnerability was discovered within the web administration service in Integrated Management Module 2 (IMM2) earlier than version 4.70 used in some Lenovo servers and earlier than version 6.60 used in some IBM servers. An attacker providing a crafted user ID and password combination can cause a portion of the authentication routine to overflow its stack, resulting in stack corruption.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Lenovo Group Ltd. | IMM2 | Earlier than 4.40 | affected |
| IBM | IMM2 | Earlier than 6.60 | affected |
Weaknesses
- Stack overflow leading to memory corruption
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.