CVE-2009-2680 - Vulnerability Details - OpenCVE

Unspecified vulnerability in the Remote Management Interface (RMI) for MSL Tape Libraries and 1/8 G2 Tape Autoloaders in HP StorageWorks 1/8 G2 Tape Autoloader firmware 2.30 and earlier, MSL2024 Tape Library firmware 4.20 and earlier, MSL4048 Tape Library firmware 6.50 and earlier, and MSL8096 Tape Library firmware 8.90 and earlier allows remote attackers to cause a denial of service via unknown vectors.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Hp	Storageworks 1\/8 G2 Tape Autoloader Storageworks Msl2024 Tape Library Storageworks Msl4048 Tape Library Storageworks Msl8096 Tape Library

Configuration 1 [-]

OR	cpe:2.3:h:hp:storageworks_1\/8_g2_tape_autoloader::::::::
	cpe:2.3:h:hp:storageworks_msl2024_tape_library::::::::
	cpe:2.3:h:hp:storageworks_msl4048_tape_library::::::::
	cpe:2.3:h:hp:storageworks_msl8096_tape_library::::::::

No data.

References

Link	Providers
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405
http://secunia.com/advisories/36764
http://securitytracker.com/id?1022905
http://www.osvdb.org/58131
http://www.securityfocus.com/bid/36388
http://www.vupen.com/english/advisories/2009/2662
https://exchange.xforce.ibmcloud.com/vulnerabilities/53237

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-09-24T16:00:00

Updated: 2024-08-07T05:59:56.877Z

Reserved: 2009-08-05T00:00:00

Link: CVE-2009-2680

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2009-09-24T16:30:01.453

Modified: 2025-04-09T00:30:58.490

Link: CVE-2009-2680

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-09-14T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Remote Management Interface (RMI) for MSL Tape Libraries and 1/8 G2 Tape Autoloaders in HP StorageWorks 1/8 G2 Tape Autoloader firmware 2.30 and earlier, MSL2024 Tape Library firmware 4.20 and earlier, MSL4048 Tape Library firmware 6.50 and earlier, and MSL8096 Tape Library firmware 8.90 and earlier allows remote attackers to cause a denial of service via unknown vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2009-2662", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2009/2662"}, {"name": "36388", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/36388"}, {"name": "58131", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/58131"}, {"name": "1022905", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1022905"}, {"name": "36764", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/36764"}, {"name": "storageworks-rmi-dos(53237)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53237"}, {"name": "SSRT080134", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405"}, {"name": "HPSBST02459", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-2680", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in the Remote Management Interface (RMI) for MSL Tape Libraries and 1/8 G2 Tape Autoloaders in HP StorageWorks 1/8 G2 Tape Autoloader firmware 2.30 and earlier, MSL2024 Tape Library firmware 4.20 and earlier, MSL4048 Tape Library firmware 6.50 and earlier, and MSL8096 Tape Library firmware 8.90 and earlier allows remote attackers to cause a denial of service via unknown vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2009-2662", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2009/2662"}, {"name": "36388", "refsource": "BID", "url": "http://www.securityfocus.com/bid/36388"}, {"name": "58131", "refsource": "OSVDB", "url": "http://www.osvdb.org/58131"}, {"name": "1022905", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1022905"}, {"name": "36764", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/36764"}, {"name": "storageworks-rmi-dos(53237)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53237"}, {"name": "SSRT080134", "refsource": "HP", "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405"}, {"name": "HPSBST02459", "refsource": "HP", "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T05:59:56.877Z"}, "title": "CVE Program Container", "references": [{"name": "ADV-2009-2662", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2009/2662"}, {"name": "36388", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/36388"}, {"name": "58131", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/58131"}, {"name": "1022905", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1022905"}, {"name": "36764", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/36764"}, {"name": "storageworks-rmi-dos(53237)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53237"}, {"name": "SSRT080134", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405"}, {"name": "HPSBST02459", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-2680", "datePublished": "2009-09-24T16:00:00", "dateReserved": "2009-08-05T00:00:00", "dateUpdated": "2024-08-07T05:59:56.877Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:hp:storageworks_1\\/8_g2_tape_autoloader:*:*:*:*:*:*:*:*", "matchCriteriaId": "72CAE62D-B7B1-4DC7-AD10-18B27E68BF9C", "versionEndIncluding": "2.30", "vulnerable": true}, {"criteria": "cpe:2.3:h:hp:storageworks_msl2024_tape_library:*:*:*:*:*:*:*:*", "matchCriteriaId": "5BC0783B-0D2A-4BEA-8AC2-D0E23A84A961", "versionEndIncluding": "4.20", "vulnerable": true}, {"criteria": "cpe:2.3:h:hp:storageworks_msl4048_tape_library:*:*:*:*:*:*:*:*", "matchCriteriaId": "B13322F0-91CD-4CC3-A1A7-95E8313679A9", "versionEndIncluding": "6.50", "vulnerable": true}, {"criteria": "cpe:2.3:h:hp:storageworks_msl8096_tape_library:*:*:*:*:*:*:*:*", "matchCriteriaId": "5C06FCD7-20FE-423E-83AD-2F36FF1BEEF2", "versionEndIncluding": "8.90", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Remote Management Interface (RMI) for MSL Tape Libraries and 1/8 G2 Tape Autoloaders in HP StorageWorks 1/8 G2 Tape Autoloader firmware 2.30 and earlier, MSL2024 Tape Library firmware 4.20 and earlier, MSL4048 Tape Library firmware 6.50 and earlier, and MSL8096 Tape Library firmware 8.90 and earlier allows remote attackers to cause a denial of service via unknown vectors."}, {"lang": "es", "value": "Una vulnerabilidad no especificada en la Interfaz de Administraci\u00f3n Remota (RMI) para MSL Tape Libraries and 1/8 G2 Tape Autoloaders en StorageWorks 1/8 G2 Tape Autoloader versi\u00f3n de firmware 2.30 y anteriores, Tape Library MSL2024 versi\u00f3n de firmware 4.20 y anteriores, MSL4048 Tape Library versi\u00f3n de firmware 6.50 y anteriores, y MSL8096 Tape Library versi\u00f3n de firmware 8.90 y anteriores, de HP, permite a los atacantes remotos causar una denegaci\u00f3n de servicio por medio de vectores desconocidos."}], "id": "CVE-2009-2680", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": true, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 8.5, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 7.8, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-09-24T16:30:01.453", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/36764"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1022905"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/58131"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/36388"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2009/2662"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53237"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01868405"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/36764"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1022905"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/58131"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/36388"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2009/2662"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53237"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}