Vulnerability CVE-2009-2680
Published: 2009-09-24   Modified: 2012-02-13

Description:
Unspecified vulnerability in the Remote Management Interface (RMI) for MSL Tape Libraries and 1/8 G2 Tape Autoloaders in HP StorageWorks 1/8 G2 Tape Autoloader firmware 2.30 and earlier, MSL2024 Tape Library firmware 4.20 and earlier, MSL4048 Tape Library firmware 6.50 and earlier, and MSL8096 Tape Library firmware 8.90 and earlier allows remote attackers to cause a denial of service via unknown vectors.

Type:

CWE-noinfo

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:P/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
8.5/10
7.8/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
Complete
Affected software
HP -> Storageworks 1/8 g2 tape autoloader 
HP -> Storageworks msl2024 tape library 
HP -> Storageworks msl4048 tape library 
HP -> Storageworks msl8096 tape library 

 References:
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405
http://xforce.iss.net/xforce/xfdb/53237
http://www.vupen.com/english/advisories/2009/2662
http://www.securityfocus.com/bid/36388
http://www.osvdb.org/58131
http://securitytracker.com/id?1022905
http://secunia.com/advisories/36764
Copyright 2024, cxsecurity.com

 

Back to Top