PT-2015-1390 · Ibm · Ibm Tivoli Storage Manager Fastback

Brian Gorenc

·

Publicado

2015-06-30

·

Atualizado

2016-12-28

·

CVE-2015-1938

CVSS v2.0

10

Alta

VetorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions IBM Tivoli Storage Manager FastBack versions prior to 6.1.12
Description The issue is related to the lack of input data sanitization in the Tivoli Storage Manager FastBack program, allowing remote attackers to execute arbitrary commands. This can be achieved through unspecified vectors.
Recommendations For versions prior to 6.1.12, update to version 6.1.12 or later to resolve the issue.

Correção

Command Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-77

Identificadores relacionados

BDU:2015-10485
CVE-2015-1938
ZDI-15-272

Produtos afetados

Ibm Tivoli Storage Manager Fastback