4 matches found
Security Bulletin: Multiple Security Vulnerabilities in IBM Tivoli Storage Manager FastBack
Summary IBM Tivoli Storage Manager FastBack is affected by multiple security vulnerabilities such as stack based buffer overflow, command injection and remote code execution. These vulnerabilities may cause the server to crash, elevate privileges, or disclose information. Vulnerability Details...
IBM Tivoli Storage Manager FastBack Server Opcode 1331 lza32 Command Injection (CVE-2015-1938)
A command injection vulnerability exists in IBM Tivoli Storage Manager FastBack Server. The vulnerability is due to insufficient input validation of parameters in opcode 1331 requests. A remote unauthenticated attacker could exploit this vulnerability by sending crafted requests to port 11460/TCP...
CVE-2015-1938
The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to execute arbitrary commands via unspecified vectors, a different vulnerability than CVE-2015-1986...
CVE-2015-1938
IBM Tivoli Storage Manager FastBack Server 6.1.x is affected by CVE-2015-1938 (and related CVEs). The issue is a command-injection vulnerability caused by insufficient input validation of Opcode 1331 requests, allowing a remote unauthenticated attacker to inject and execute commands on the server...