| Vulnerability Name: | CVE-2015-1929 (CCN-102965) |
| Assigned: | 2015-06-26 |
| Published: | 2015-06-26 |
| Updated: | 2016-12-28 |
| Summary: | Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1924, CVE-2015-1925, CVE-2015-1930, CVE-2015-1948, CVE-2015-1953, CVE-2015-1954, CVE-2015-1962, CVE-2015-1963, CVE-2015-1964, and CVE-2015-1965.
|
| CVSS v3 Severity: | 7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)| Exploitability Metrics: | Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None | | Scope: | Scope (S): Unchanged
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): High |
|
| CVSS v2 Severity: | 7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
5.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)| Exploitability Metrics: | Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None | | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete |
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
5.8 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)| Exploitability Metrics: | Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete |
|
| Vulnerability Type: | CWE-119
|
| Vulnerability Consequences: | Denial of Service |
| References: | Source: MITRE
Type: CNA
CVE-2015-1929
Source: CONFIRM
Type: Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21959398
Source: BID
Type: UNKNOWN
75451
Source: CCN
Type: BID-75451
IBM Tivoli Storage Manager FastBack CVE-2015-1929 Stack Buffer Overflow Vulnerability
Source: SECTRACK
Type: UNKNOWN
1032773
Source: MISC
Type: UNKNOWN
http://www.zerodayinitiative.com/advisories/ZDI-15-263
Source: XF
Type: UNKNOWN
ibm-tivoli-cve20151929-dos(102965)
Source: CCN
Type: IBM Security Bulletin 1959398
Multiple security vulnerabilities in IBM Tivoli Storage Manager FastBack
Source: CCN
Type: ZDI-15-263
IBM Tivoli Storage Manager FastBack Server FXCLI_OraBR_Exec_Command Remote Code Execution Vulnerability
|
| Vulnerable Configuration: | Configuration 1:
cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.0.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.1.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.7.2:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.8.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.8.1:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.9.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.9.1:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.10.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.10.1:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.11.0:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.11.1:*:*:*:*:*:*:*
Configuration CCN 1:
cpe:/a:ibm:tivoli_storage_manager_fastback:6.1:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.1:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.2:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.3:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.4:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.5:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.6:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.7:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.8:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.9:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.10:*:*:*:*:*:*:*OR cpe:/a:ibm:tivoli_storage_manager_fastback:6.1.11:*:*:*:*:*:*:*
 Denotes that component is vulnerable |
| BACK |
ibm tivoli storage manager fastback 6.1.0.0
ibm tivoli storage manager fastback 6.1.1.0
ibm tivoli storage manager fastback 6.1.7.2
ibm tivoli storage manager fastback 6.1.8.0
ibm tivoli storage manager fastback 6.1.8.1
ibm tivoli storage manager fastback 6.1.9.0
ibm tivoli storage manager fastback 6.1.9.1
ibm tivoli storage manager fastback 6.1.10.0
ibm tivoli storage manager fastback 6.1.10.1
ibm tivoli storage manager fastback 6.1.11.0
ibm tivoli storage manager fastback 6.1.11.1
ibm tivoli storage manager fastback 6.1
ibm tivoli storage manager fastback 6.1.1
ibm tivoli storage manager fastback 6.1.2
ibm tivoli storage manager fastback 6.1.3
ibm tivoli storage manager fastback 6.1.4
ibm tivoli storage manager fastback 6.1.5
ibm tivoli storage manager fastback 6.1.6
ibm tivoli storage manager fastback 6.1.7
ibm tivoli storage manager fastback 6.1.8
ibm tivoli storage manager fastback 6.1.9
ibm tivoli storage manager fastback 6.1.10
ibm tivoli storage manager fastback 6.1.11