Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM47722622D674A421F35A9ED7073A3A64BA9AA31E9B3A48C1BC6F7B7893162BC5
HistoryJun 17, 2018 - 3:30 p.m.

Security Bulletin: IBM Tivoli Storage Manager FastBack for Bare Machine Recovery affected by Stack-Based Buffer Overflow Elevation of Privilege Vulnerability - CORRECTION

2018-06-1715:30:58
www.ibm.com
5

0.867 High

EPSS

Percentile

98.6%

JSON

Summary

The IBM Tivoli Storage Manager FastBack mount process is vulnerable to a stack-based buffer overflow. A local or remote attacker could overflow a buffer and execute arbitrary code on the system with root privileges or cause the application to crash. On November 21, this vulnerability was incorrectly reported as CVE-2016-6091. The correct CVE IDs for these vulnerabilities are CVE-2015-1897 and CVE-2015-0119.

Vulnerability Details

Please consult the security bulletins IBM Tivoli Storage Manager FastBack Stack-Based Buffer Overflow Elevation of Privilege Vulnerability (CVE-2015-1897)_ and IBM Tivoli Storage Manager FastBack Mount Remote Code Execution Vulnerability (CVE-2015-0119) _for vulnerability details and information about fixes.

Affected Products and Versions

IBM Tivoli Storage Manager FastBack Mount 6.1.11 and earlier.

Remediation/Fixes

Please consult the security bulletins IBM Tivoli Storage Manager FastBack Stack-Based Buffer Overflow Elevation of Privilege Vulnerability (CVE-2015-1897)_ and IBM Tivoli Storage Manager FastBack Mount Remote Code Execution Vulnerability (CVE-2015-0119) _for information on applying the appropriate fixes.

Workarounds and Mitigations

None

Related

nvd 4
cve 4
ibm 3
prion 4
cvelist 4
checkpoint_advisories 1
zdi 1
nessus 1
nvd
nvd
CVE-2016-6091
2017-01-10 17:59:00
CVE-2015-0119
2015-04-06 00:59:02
CVE-2015-1898
2015-04-15 10:59:09
cve
cve
CVE-2016-6091
2017-01-10 17:59:00
CVE-2015-0119
2015-04-06 00:59:02
CVE-2015-1897
2015-04-15 10:59:08
ibm
ibm
Security Bulletin: IBM Tivoli Storage Manager FastBack affected by Stack-Based Buffer Overflow Elevation of Privilege Vulnerability - CORRECTION
2018-06-17 15:30:57
Security Bulletin: IBM Tivoli Storage Manager FastBack Stack-Based Buffer Overflow Elevation of Privilege Vulnerability (CVE-2015-1897)
2022-08-19 18:23:31
Security Bulletin: IBM Tivoli Storage Manager FastBack Mount Remote Code Execution Vulnerability (CVE-2015-0119)
2022-08-20 01:29:42
prion
prion
Design/Logic Flaw
2017-01-10 17:59:00
Code injection
2015-04-06 00:59:00
Stack overflow
2015-04-15 10:59:00
cvelist
cvelist
CVE-2016-6091
2017-01-10 17:00:00
CVE-2015-0119
2015-04-06 00:00:00
CVE-2015-1897
2015-04-15 10:00:00
checkpoint_advisories
checkpoint_advisories
IBM Tivoli Storage Manager FastBack Mount Opcode 0x09 Stack Buffer Overflow (CVE-2015-0119)
2015-05-07 00:00:00
zdi
zdi
IBM Tivoli Storage Manager FastBack Mount CMountDismount::GetVaultDump Remote Code Execution Vulnerability
2015-04-08 00:00:00
nessus
nessus
IBM Tivoli Storage Manager FastBack Mount CMountDismount::GetVaultDump RCE
2016-12-27 00:00:00

0.867 High

EPSS

Percentile

98.6%

JSON
Related for 47722622D674A421F35A9ED7073A3A64BA9AA31E9B3A48C1BC6F7B7893162BC5
nvd4cve4ibm3prion4cvelist4checkpoint_advisories1zdi1nessus1