Vulnerability Description
Buffer overflow in the BrSmRcvAndCheck function in the RCHMGR module on IBM OS/400 V5R4M0, V5R4M5, and V6R1M0 allows local users to cause a denial of service (task halt and main storage dump) via unspecified vectors involving the running of diagnostics on a modem port. NOTE: there might be limited attack scenarios.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Os 400 | v5r4m0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/30554Vendor Advisory
- http://www-1.ibm.com/support/docview.wss?uid=nas21f21bcbaa63f55268625745e003c6f6
- http://www.securityfocus.com/bid/29660
- http://www.vupen.com/english/advisories/2008/1799
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42984
- http://secunia.com/advisories/30554Vendor Advisory
- http://www-1.ibm.com/support/docview.wss?uid=nas21f21bcbaa63f55268625745e003c6f6
- http://www.securityfocus.com/bid/29660
- http://www.vupen.com/english/advisories/2008/1799
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42984
FAQ
What is CVE-2008-2709?
CVE-2008-2709 is a vulnerability with a CVSS score of 4.7 (MEDIUM). Buffer overflow in the BrSmRcvAndCheck function in the RCHMGR module on IBM OS/400 V5R4M0, V5R4M5, and V6R1M0 allows local users to cause a denial of service (task halt and main storage dump) via unsp...
How severe is CVE-2008-2709?
CVE-2008-2709 has been rated MEDIUM with a CVSS base score of 4.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-2709?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Os 400.