PT-2012-3588 · Dell+2 · Dell Ml6000+2
Published
2012-03-22
·
Updated
2018-01-10
·
CVE-2012-1844
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Quantum Scalar i500 tape library versions prior to i7.0.3 (604G.GS00100)
Dell ML6000 tape library versions prior to A20-00 (590G.GS00100)
IBM TS3310 tape library versions prior to R6C (606G.GS001)
Description
The issue concerns the use of default passwords for unspecified user accounts in the tape libraries. This makes it easier for remote attackers to obtain access, although the specific vectors used for the attack are not detailed.
Recommendations
For Quantum Scalar i500 tape library versions prior to i7.0.3 (604G.GS00100), update the firmware to version i7.0.3 (604G.GS00100) or later.
For Dell ML6000 tape library versions prior to A20-00 (590G.GS00100), update the firmware to version A20-00 (590G.GS00100) or later.
For IBM TS3310 tape library versions prior to R6C (606G.GS001), update the firmware to version R6C (606G.GS001) or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dell Ml6000
Ibm Ts3310
Quantum Scalar I500