Back to search
CVE-2017-3774
Published: Apr 19, 2018
Modified: Sep 16, 2024
PUBLISHED
Description
A stack overflow vulnerability was discovered within the web administration service in Integrated Management Module 2 (IMM2) earlier than version 4.70 used in some Lenovo servers and earlier than version 6.60 used in some IBM servers. An attacker providing a crafted user ID and password combination can cause a portion of the authentication routine to overflow its stack, resulting in stack corruption.
| Vendor | Product | Versions |
|---|---|---|
Lenovo Group Ltd. | IMM2 | affected Earlier than 4.40 |
IBM | IMM2 | affected Earlier than 6.60 |
References
https://support.lenovo.com/us/en/product_security/LEN-19586
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now