Vulnerabilities > CVE-2009-2680 - Remote Management Interface Privilege Escalation vulnerability in HP StorageWorks Products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
COMPLETE Summary
Unspecified vulnerability in the Remote Management Interface (RMI) for MSL Tape Libraries and 1/8 G2 Tape Autoloaders in HP StorageWorks 1/8 G2 Tape Autoloader firmware 2.30 and earlier, MSL2024 Tape Library firmware 4.20 and earlier, MSL4048 Tape Library firmware 6.50 and earlier, and MSL8096 Tape Library firmware 8.90 and earlier allows remote attackers to cause a denial of service via unknown vectors.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Hardware | 4 |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/85012/DSECRG-09-011.txt |
| id | PACKETSTORM:85012 |
| last seen | 2016-12-05 |
| published | 2010-01-11 |
| reporter | Sh2kerr |
| source | https://packetstormsecurity.com/files/85012/HP-StorageWork-1-8-G2-Tape-Autoloader-Privilege-Escalation.html |
| title | HP StorageWork 1/8 G2 Tape Autoloader Privilege Escalation |
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405
- http://secunia.com/advisories/36764
- http://securitytracker.com/id?1022905
- http://www.osvdb.org/58131
- http://www.securityfocus.com/bid/36388
- http://www.vupen.com/english/advisories/2009/2662
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53237