Main Vulnerability Database SB2018042480

SB2018042480 - Multiple vulnerabilities in IBM Flex System Chassis Management Module (CMM)

Published: April 24, 2018 Updated: February 17, 2025

Security Bulletin ID SB2018042480

Severity

High

Patch available

YES

Number of vulnerabilities 2

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Man-in-the-middle attack (CVE-ID: CVE-2018-10548)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists in the ext/ldap/ldap.c source code file due to improper handling of return values from the ldap_get_dn function. A remote attacker can use man-in-the middle techniques to trigger ldap_get_dn() to return a NULL pointer and cause ldap_get_entries() because add_assoc_string() to crash.

2) Use-after-free error (CVE-ID: CVE-2018-12882)

The vulnerability allows a remote attacker to cause DoS condition or execute arbitrary code on the target system.

The vulnerability exists due to use-after-free error when the exif_read_from_impl function, as defined in the ext/exif/exif.c source code file, closes a stream that it is not responsible for closing. A remote unauthenticated attacker can trick the victim into opening a specially crafted file that submits malicious .jpeg input, trigger memory corruption and cause the service to crash or execute arbitrary code with elevated privileges.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Remediation

Install update from vendor's website.

References

https://www.ibm.com/support/pages/node/734713