CVE-2016-1543

Name of the Vulnerable Software and Affected Versions BMC BladeLogic Server Automation versions 8.2.x through 8.7.x

Description The issue allows remote attackers to bypass authorization and reset arbitrary user passwords by sending an action packet to xmlrpc after an authorization failure. This is related to the RPC API in the RSCD agent on Linux and UNIX systems.

Recommendations For versions 8.2.x through 8.7.x, consider restricting access to the xmlrpc endpoint to minimize the risk of exploitation until a patch is available. As a temporary workaround, limit the ability to send action packets after authorization failures.