CVE-2007-6305

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2007-6305
Multiple unspecified vulnerabilities in IBM Hardware Management Console (HMC) 7 R3.2.0 allow attackers to gain privileges via "some HMC commands."

4.6 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://secunia.com/advisories/27961 Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=isg1MB02226
http://www.securitytracker.com/id?1019062
http://www.vupen.com/english/advisories/2007/4144
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4038 Patch
https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01065 Patch
http://secunia.com/advisories/27961 Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=isg1MB02226
http://www.securitytracker.com/id?1019062
http://www.vupen.com/english/advisories/2007/4144
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4038 Patch
https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01065 Patch
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:unix:unix:any_version:*:*:*:*:*:*:*
cpe:2.3:a:ibm:hardware_management_console:7.3.2.0:*:*:*:*:*:*:*
History

21 Nov 2024, 00:39

Type Values Removed Values Added
References () http://secunia.com/advisories/27961 - Vendor Advisory () http://secunia.com/advisories/27961 - Vendor Advisory
References () http://www-1.ibm.com/support/docview.wss?uid=isg1MB02226 - () http://www-1.ibm.com/support/docview.wss?uid=isg1MB02226 -
References () http://www.securitytracker.com/id?1019062 - () http://www.securitytracker.com/id?1019062 -
References () http://www.vupen.com/english/advisories/2007/4144 - () http://www.vupen.com/english/advisories/2007/4144 -
References () http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4038 - Patch () http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4038 - Patch
References () https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01065 - Patch () https://www14.software.ibm.com/webapp/set2/sas/f/hmc/power6/install/v7.Readme.html#MH01065 - Patch
Information

Published : 2007-12-10 21:46

Updated : 2024-11-21 00:39

NVD link : CVE-2007-6305

Mitre link : CVE-2007-6305

CVE.ORG link : CVE-2007-6305

JSON object : View

Products Affected

unix

  • unix

ibm

  • hardware_management_console

linux

  • linux_kernel
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-264

Permissions, Privileges, and Access Controls