IBM Global Console Manager Switches Multiple XSS Vulnerabilities

IBM Global Console Manager switches are prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

CVE-2014-3085

Affected product : IBM Global Console Manager switches (GCM16 and GCM32). Version impact : firmware versions prior to 1.20.20.23447 are affected. Vulnerability : CVE-2014-3085 — Improper handling in systest.php allows a remote authenticated attacker to execute arbitrary commands via shell metacha...

IBM GCM16 / GCM32 Global Console Manager KVM Switch Detection

Binary data ibmgcmkvmdetect.nbin...

IBM GCM16 / GCM32 Global Console Manager KVM Switch Firmware Version < 1.20.0.22575 Remote Code Execution

According to its self-reported version, the remote host is an IBM Global Console Manager KVM switch with a firmware version prior to 1.20.0.22575. It is, therefore, affected by a remote code execution vulnerability that could allow an authenticated attacker to execute commands as root via the...

CVE-2013-0526

ping.php in Global Console Manager 16 GCM16 and Global Console Manager 32 GCM32 before 1.20.0.22575 on the IBM Avocent 1754 KVM switch allows remote authenticated users to execute arbitrary commands via shell metacharacters in the 1 count or 2 size parameter...

Code injection

ping.php in Global Console Manager 16 GCM16 and Global Console Manager 32 GCM32 before 1.20.0.22575 on the IBM Avocent 1754 KVM switch allows remote authenticated users to execute arbitrary commands via shell metacharacters in the 1 count or 2 size parameter...