#VU17812 Buffer overflow in Dell products - CVE-2015-7272

Cybersecurity Help s.r.o.

Published: 2019-02-21

Vulnerability identifier: #VU17812

Vulnerability risk: Low

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2015-7272

CWE-ID: CWE-120

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
iDRAC6
Web applications / Remote management & hosting panels
iDRAC7
Web applications / Remote management & hosting panels
iDRAC8
Web applications / Remote management & hosting panels

Vendor: Dell

Description
The vulnerability allows a remote attacker to cause DoS condition.

The weakness exists due to buffer overflow when handling malicious input. A remote attacker can supply a long SSH username or input, trigger memory corruption and cause the service to crash.

Mitigation
Install update from vendor's website.

Vulnerable software versions

iDRAC6: 1.0 - 2.2

iDRAC7: 2.10.10.10 - 2.20.20.20

iDRAC8: 2.00.00.00 - 2.20.20.20

External links
https://downloads.dell.com/solutions/dell-management-solution-resources/Dell%20iDRAC%20Response%20to...

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Dell EMC iDRAC