----------------------------------------------------------------------


  Secunia CSI
+ Microsoft SCCM
-----------------------
= Extensive Patch Management

http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/


----------------------------------------------------------------------

TITLE:
IBM BladeCenter Management Module Denial of Service

SECUNIA ADVISORY ID:
SA39455

VERIFY ADVISORY:
http://secunia.com/advisories/39455/

DESCRIPTION:
Alexey Sintsov has reported a vulnerability in IBM BladeCenter
Advanced Management Module, which can be exploited by malicious
people to cause a DoS.

The vulnerability is caused due to a "Universal Serial Bus
(USB)/iSCSI interrupt sharing violation", which can be exploited to
cause a vulnerable device to reboot by sending malformed packets to
the remote presence port (3900/TCP).

SOLUTION:
Update to firmware version bpet50g.
http://www-947.ibm.com/systems/support/supportsite.wss/docdisplay?lndocid=MIGR-63017&brandind=5000020

PROVIDED AND/OR DISCOVERED BY:
Alexey Sintsov, Digital Security Research Group

ORIGINAL ADVISORY:
Digital Security Research Group:
http://dsecrg.com/pages/vul/show.php?id=149

IBM:
http://www-947.ibm.com/systems/support/supportsite.wss/docdisplay?lndocid=MIGR-5083945&brandind=5000020

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------