IBM SmartCloud Entry is vulnerable to OpenLDAP vulnerabilities. Remote attackers could exploit this vulnerability to cause the slapd service to crash by sending a specially-crafted packet.
CVE(s): CVE-2015-6908
Affected product(s) and affected version(s):
IBM SmartCloud Entry 2.2.0 through 2.2.0.4 Appliance fix pack 7
IBM SmartCloud Entry 2.3.0 through 2.3.0.4 Appliance fix pack 7
IBM SmartCloud Entry 2.4.0 through 2.4.0.4 Appliance fix pack 7
IBM SmartCloud Entry 3.1.0 through 3.1.0.4 Appliance fix pack 22
IBM SmartCloud Entry 3.2.0 through 3.2.0.4 Appliance fix pack 22
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2hyFap1
X-Force Database: http://ift.tt/1Tg5vmN
from IBM Product Security Incident Response Team http://ift.tt/2hyEQXw
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.