Vulnerability Name: | CVE-2015-1924 (CCN-102776) |
Assigned: | 2015-06-26 |
Published: | 2015-06-26 |
Updated: | 2016-12-28 |
Summary: | Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1925, CVE-2015-1929, CVE-2015-1930, CVE-2015-1948, CVE-2015-1953, CVE-2015-1954, CVE-2015-1962, CVE-2015-1963, CVE-2015-1964, and CVE-2015-1965.
|
CVSS v3 Severity: | 7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)Exploitability Metrics: | Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None | Scope: | Scope (S): Unchanged
| Impact Metrics: | Confidentiality (C): None Integrity (I): None Availibility (A): High |
|
CVSS v2 Severity: | 7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C) 5.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)Exploitability Metrics: | Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None | Impact Metrics: | Confidentiality (C): None Integrity (I): None Availibility (A): Complete | 7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C) 5.8 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)Exploitability Metrics: | Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
| Impact Metrics: | Confidentiality (C): None Integrity (I): None Availibility (A): Complete |
|
Vulnerability Type: | CWE-119
|
Vulnerability Consequences: | Denial of Service |
References: | Source: MITRE Type: CNA CVE-2015-1924
Source: CONFIRM Type: Vendor Advisory http://www-01.ibm.com/support/docview.wss?uid=swg21959398
Source: BID Type: UNKNOWN 75447
Source: CCN Type: BID-75447 IBM Tivoli Storage Manager FastBack CVE-2015-1924 Stack Buffer Overflow Vulnerability
Source: SECTRACK Type: UNKNOWN 1032773
Source: MISC Type: UNKNOWN http://www.zerodayinitiative.com/advisories/ZDI-15-267
Source: XF Type: UNKNOWN ibm-tivoli-cve20151924-dos(102776)
Source: CCN Type: IBM Security Bulletin 1959398 Multiple security vulnerabilities in IBM Tivoli Storage Manager FastBack
Source: CCN Type: ZDI-15-267 IBM Tivoli Storage Manager FastBack Server Opcode 1329 Remote Code Execution Vulnerability
|
Vulnerable Configuration: | Configuration 1: cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.0.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.1.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.7.2:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.8.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.8.1:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.9.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.9.1:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.10.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.10.1:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.11.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.11.1:*:*:*:*:*:*:* Configuration CCN 1: cpe:/a:ibm:tivoli_storage_manager_fastback:6.1:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.1:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.2:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.3:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.4:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.5:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.6:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.7:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.8:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.9:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.10:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.11:*:*:*:*:*:*:* Denotes that component is vulnerable |
BACK |
ibm tivoli storage manager fastback 6.1.0.0
ibm tivoli storage manager fastback 6.1.1.0
ibm tivoli storage manager fastback 6.1.7.2
ibm tivoli storage manager fastback 6.1.8.0
ibm tivoli storage manager fastback 6.1.8.1
ibm tivoli storage manager fastback 6.1.9.0
ibm tivoli storage manager fastback 6.1.9.1
ibm tivoli storage manager fastback 6.1.10.0
ibm tivoli storage manager fastback 6.1.10.1
ibm tivoli storage manager fastback 6.1.11.0
ibm tivoli storage manager fastback 6.1.11.1
ibm tivoli storage manager fastback 6.1
ibm tivoli storage manager fastback 6.1.1
ibm tivoli storage manager fastback 6.1.2
ibm tivoli storage manager fastback 6.1.3
ibm tivoli storage manager fastback 6.1.4
ibm tivoli storage manager fastback 6.1.5
ibm tivoli storage manager fastback 6.1.6
ibm tivoli storage manager fastback 6.1.7
ibm tivoli storage manager fastback 6.1.8
ibm tivoli storage manager fastback 6.1.9
ibm tivoli storage manager fastback 6.1.10
ibm tivoli storage manager fastback 6.1.11