The ThinkServer System Manager (TSM) Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 allows remote attackers to cause a denial of service (web interface crash) via a malformed HTTP request during authentication.
References
Link | Resource |
---|---|
http://support.lenovo.com/us/en/product_security/tsm_weak_pw | Vendor Advisory |
http://www.securityfocus.com/bid/74197 |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2015-04-16 16:59
Updated : 2016-12-05 18:59
NVD link : CVE-2015-3323
Mitre link : CVE-2015-3323
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
lenovo
- thinkserver_rd350
- thinkserver_rd650
- thinkserver_rd550
- thinkserver_rd450
- thinkserver_system_manager_baseboard_management_controller_firmware
- thinkserver_td350