Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	APP:IBM:TIV-OP1331-CMDINJ
Severity	Major
Recommended	Yes
Recommended Action	Drop
Category	APP
Keywords	IBM Tivoli Storage Manager FastBack Opcode 1331 Command Injection
Release Date	2015/10/07
Update Number	2543
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

APP: IBM Tivoli Storage Manager FastBack Opcode 1331 Command Injection

This signature detects attempts to exploit a known vulnerability against IBM Tivoli Storage Manager. A successful attack can lead to arbitrary command execution.

Extended Description

The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to execute arbitrary commands via unspecified vectors, a different vulnerability than CVE-2015-1986.

Affected Products

Ibm tivoli_storage_manager_fastback 6.1.0.0
Ibm tivoli_storage_manager_fastback 6.1.1.0
Ibm tivoli_storage_manager_fastback 6.1.10.0
Ibm tivoli_storage_manager_fastback 6.1.10.1
Ibm tivoli_storage_manager_fastback 6.1.11.0
Ibm tivoli_storage_manager_fastback 6.1.11.1
Ibm tivoli_storage_manager_fastback 6.1.7.2
Ibm tivoli_storage_manager_fastback 6.1.8.0
Ibm tivoli_storage_manager_fastback 6.1.8.1
Ibm tivoli_storage_manager_fastback 6.1.9.0
Ibm tivoli_storage_manager_fastback 6.1.9.1

References

CVE: CVE-2015-1923
CVE: CVE-2015-1938
URL: http://www-01.ibm.com/support/docview.wss?uid=swg21959398

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: IBM Tivoli Storage Manager FastBack Opcode 1331 Command Injection

Extended Description

Affected Products

References