Engenio/LSI Logic storage controllers, as used in products such as Storagetek D280, and IBM DS4100 (formerly FastT 100) and Brocade SilkWorm Switches, allow remote attackers to cause a denial of service (freeze and possible data corruption) via crafted TCP packets.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Silkworm | Brocade | 3200 (including) | 3200 (including) |
| Silkworm | Brocade | 3250 (including) | 3250 (including) |
| Silkworm | Brocade | 3800 (including) | 3800 (including) |
| Silkworm | Brocade | 3850 (including) | 3850 (including) |
| Silkworm | Brocade | 3900 (including) | 3900 (including) |
| Silkworm_fiber_channel_switch | Brocade | 2010 (including) | 2010 (including) |
| Silkworm_fiber_channel_switch | Brocade | 2040 (including) | 2040 (including) |
| Silkworm_fiber_channel_switch | Brocade | 2050 (including) | 2050 (including) |
| Storage_controller | Engenio | 2822 (including) | 2822 (including) |
| Storage_controller | Engenio | 2882 (including) | 2882 (including) |
| Storage_controller | Engenio | 4884 (including) | 4884 (including) |
| Storage_controller | Engenio | 5884 (including) | 5884 (including) |
| Ds4100 | Ibm | * | * |
| D280 | Storagetek | * | * |
| Fabric_operating_system | Broadcom | 2.1.2 (including) | 2.1.2 (including) |
| Fabric_operating_system | Broadcom | 2.2 (including) | 2.2 (including) |
| Fabric_operating_system | Broadcom | 3.1 (including) | 3.1 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=109435831811484\u0026w=2
- http://secunia.com/advisories/12464
- http://www.securityfocus.com/bid/11108
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17290
- http://marc.info/?l=bugtraq\u0026m=109435831811484\u0026w=2
- http://secunia.com/advisories/12464
- http://www.securityfocus.com/bid/11108
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17290