CVE-2015-1942

2015-06-3015:59:08

CWE-20

ibm

web.nvd.nist.gov

ibm

tivoli storage manager

fastback

remote attack

arbitrary file write

cve-2015-1942

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

0.145

Percentile

95.8%

JSON

The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to write to arbitrary files, and subsequently execute these files, via a crafted TCP packet to an unspecified port.

Affected configurations

Nvd

Node

ibmtivoli_storage_manager_fastbackMatch6.1.0.0

ibmtivoli_storage_manager_fastbackMatch6.1.1.0

ibmtivoli_storage_manager_fastbackMatch6.1.7.2

ibmtivoli_storage_manager_fastbackMatch6.1.8.0

ibmtivoli_storage_manager_fastbackMatch6.1.8.1

ibmtivoli_storage_manager_fastbackMatch6.1.9.0

ibmtivoli_storage_manager_fastbackMatch6.1.9.1

ibmtivoli_storage_manager_fastbackMatch6.1.10.0

ibmtivoli_storage_manager_fastbackMatch6.1.10.1

ibmtivoli_storage_manager_fastbackMatch6.1.11.0

ibmtivoli_storage_manager_fastbackMatch6.1.11.1

VendorProductVersionCPE
ibmtivoli_storage_manager_fastback6.1.0.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.0.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback6.1.1.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.1.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback6.1.7.2cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.7.2:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback6.1.8.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.8.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback6.1.8.1cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.8.1:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback6.1.9.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.9.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback6.1.9.1cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.9.1:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback6.1.10.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.10.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback6.1.10.1cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.10.1:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback6.1.11.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.11.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	tivoli_storage_manager_fastback	6.1.0.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.0.0:::::::*
ibm	tivoli_storage_manager_fastback	6.1.1.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.1.0:::::::*
ibm	tivoli_storage_manager_fastback	6.1.7.2	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.7.2:::::::*
ibm	tivoli_storage_manager_fastback	6.1.8.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.8.0:::::::*
ibm	tivoli_storage_manager_fastback	6.1.8.1	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.8.1:::::::*
ibm	tivoli_storage_manager_fastback	6.1.9.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.9.0:::::::*
ibm	tivoli_storage_manager_fastback	6.1.9.1	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.9.1:::::::*
ibm	tivoli_storage_manager_fastback	6.1.10.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.10.0:::::::*
ibm	tivoli_storage_manager_fastback	6.1.10.1	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.10.1:::::::*
ibm	tivoli_storage_manager_fastback	6.1.11.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.11.0:::::::*