2 matches found
Security Bulletin: IBM Storwize V7000 Unified Fix Available for Storwize V7000 Cross Protocol Vulnerability (CVE-2013-0500)
Abstract IBM Storwize V7000 Unified includes a flaw in the handling of special files created by an NFS client resulting in a vulnerability reported against IBM Storwize V7000 Unified. Content VULNERABILITY DETAILS: CVE ID: CVE-2013-0500 DESCRIPTION: A flaw in the IBM Storwize V7000 Unified code f...
CVE-2013-0500
IBM Storwize V7000 Unified (1.3.0.0–1.4.1.1) is affected by CVE-2013-0500 due to a flaw in handling special files (character/block devices) created by NFS and later accessed via non‑NFS NAS protocols (CIFS, HTTPS, SCP, SFTP). An authenticated NAS user could read, modify, or manipulate configurati...