Vulnerability Description
Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long SSH username or input.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Integrated Remote Access Controller Firmware | <= 2.20.20.20 |
| Dell | Integrated Remote Access Controller 7 | - |
| Dell | Integrated Remote Access Controller 8 | - |
| Dell | Integrated Remote Access Controller 6 | - |
Related Weaknesses (CWE)
References
- http://en.community.dell.com/techcenter/extras/m/white_papers/20441859Vendor Advisory
- http://www.securityfocus.com/bid/97532Third Party AdvisoryVDB Entry
- http://en.community.dell.com/techcenter/extras/m/white_papers/20441859Vendor Advisory
- http://www.securityfocus.com/bid/97532Third Party AdvisoryVDB Entry
FAQ
What is CVE-2015-7272?
CVE-2015-7272 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a...
How severe is CVE-2015-7272?
CVE-2015-7272 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2015-7272?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Integrated Remote Access Controller Firmware, Dell Integrated Remote Access Controller 7, Dell Integrated Remote Access Controller 8, Dell Integrated Remote Access Controller 6.