VYPR
Vendor

Openfabrics

Products
6
CVEs
8
Across products
10
Status
Private

Products

6

Recent CVEs

8
  • CVE-2008-3277Apr 15, 2014
    risk 0.00cvss epss 0.00

    Untrusted search path vulnerability in a certain Red Hat build script for the ibmssh executable in ibutils packages before ibutils-1.5.7-2.el6 in Red Hat Enterprise Linux (RHEL) 6 and ibutils-1.2-11.2.el5 in Red Hat Enterprise Linux (RHEL) 5 allows local users to gain privileges…

  • CVE-2013-2561Nov 23, 2013
    risk 0.00cvss epss 0.00

    OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on (1) ibdiagnet.db, (2) ibdiagnet.fdbs, (3) ibdiagnet_ibis.log, (4) ibdiagnet.log, (5) ibdiagnet.lst, (6) ibdiagnet.mcfdbs, (7) ibdiagnet.pkey, (8) ibdiagnet.psl, (9) ibdiagnet.slvl,…

  • CVE-2012-4518Oct 22, 2012
    risk 0.00cvss epss 0.00

    ibacm 1.0.7 creates files with world-writable permissions, which allows local users to overwrite the ib_acm daemon log or ibacm.port file.

  • CVE-2012-4517Oct 22, 2012
    risk 0.00cvss epss 0.03

    ibacm before 1.0.6 does not properly manage reference counts for multicast connections, which allows remote attackers to cause a denial of service (ibacm service crash) via a crafted join response.

  • CVE-2012-4516Oct 22, 2012
    risk 0.00cvss epss 0.02

    librdmacm 1.0.16, when ibacm.port is not specified, connects to port 6125, which allows remote attackers to specify the address resolution information for the application via a malicious ib_acm service.

  • CVE-2011-3345Sep 19, 2011
    risk 0.00cvss epss 0.00

    ulp/sdp/sdp_proc.c in the ib_sdp module (aka ib_sdp.ko) in the ofa_kernel package in the InfiniBand driver implementation in OpenFabrics Enterprise Distribution (OFED) before 1.5.3 does not properly handle certain non-array variables, which allows local users to cause a denial…

  • CVE-2010-4173Nov 22, 2010
    risk 0.00cvss epss 0.00

    The default configuration of libsdp.conf in libsdp 1.1.104 and earlier creates log files in /tmp, which allows local users to overwrite arbitrary files via a (1) symlink or (2) hard link attack on the libsdp.log.##### temporary file.

  • CVE-2010-1693Oct 26, 2010
    risk 0.00cvss epss 0.00

    openibd in OpenFabrics Enterprise Distribution (OFED) 1.5.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/ib_set_node_desc.sh temporary file.