APP: IBM Tivoli Storage Manager FastBack Server Opcode 1301 Format String
This signature detects attempts to exploit a known vulnerability against IBM Tivoli Storage Manager FastBack Server. The vulnerability is due to insufficient sanitization on parameters of Opcode 1301 requests. Successful exploitation could lead to arbitrary code execution within the context of the running application.
Extended Description
The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to execute arbitrary commands via unspecified vectors, a different vulnerability than CVE-2015-1938.
Affected Products
Ibm tivoli_storage_manager_fastback
References
BugTraq: 75461
CVE: CVE-2015-1986
URL: http://www-01.ibm.com/support/docview.wss?uid=swg21959398
Short Name
APP:IBM:TIVOLI-SRV-OP1301
Severity
Major
Recommended
True
Recommended Action
Drop
Category
APP
Keywords
1301 CVE-2015-1986 FastBack Format IBM Manager Opcode Server Storage String Tivoli bid:75461
Release Date
12/30/2015
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3337
Port
TCP/11460
False Positive
Unknown
Vendors
Ibm
CVSS Score
10.0