3 matches found
CVE-2012-2171
CVE-2012-2171 and CVE-2012-2172 affect IBM System Storage DS Storage Manager Profiler on DS Series devices (before 10.83.xx.18). CVE-2012-2171 is an SQL injection in ModuleServlet.do, exploitable by remote authenticated users via the selectedModuleOnly parameter in a state_viewmodulelog action to...
CVE-2004-1663
CVE-2004-1663 affects Engenio/LSI Logic storage controllers (used in Storagetek D280, IBM DS4100, Brocade SilkWorm Switches). It allows remote attackers to trigger a denial of service (freeze and possible data corruption) via crafted TCP packets. The documents describe the vulnerability and affec...
CVE-2012-2172
Summary of CVE-2012-2171 and CVE-2012-2172 : IBM System Storage DS Storage Manager Profiler (DS Series) is affected. The ModuleServlet.do endpoint in the Storage Manager Profiler is vulnerable to SQL injection (CVE-2012-2171) via the selectedModuleOnly parameter, and CVE-2012-2172 describes a cro...