CVE-2017-3774

N/A

A stack overflow vulnerability was discovered within the web administration service in Integrated Management Module 2 (IMM2) earlier than version 4.70 used in some Lenovo servers and earlier than version 6.60 used in some IBM servers. An attacker providing a crafted user ID and password combination can cause a portion of the authentication routine to overflow its stack, resulting in stack corruption.

N/A

N/A

多款Lenovo和IBM产品Integrated Management Module II 缓冲区错误漏洞

Lenovo Flex System x240 M4等都是中国联想（Lenovo）公司的服务器产品。IBM BladeCenter HS22等都是美国IBM公司的服务器产品。Integrated Management Module II（IMM2）是其中的一个集成管理模块。 多款Lenovo和IBM产品中的IMM2 4.70之前版本（用于Lenovo服务器）和6.60之前版本（用于IBM服务器）中的Web管理服务存在栈溢出漏洞。攻击者可利用该漏洞造成栈损坏。以下产品受到影响：Lenovo Flex Sys

N/A

N/A