CVSS: 2.5EPSS: 0%CPEs: 66EXPL: 0CVE-2016-2894
https://notcve.org/view.php?id=CVE-2016-2894
03 Jul 2016 — IBM Spectrum Protect (formerly Tivoli Storage Manager) 5.5 through 6.3 before 6.3.2.6, 6.4 before 6.4.3.3, and 7.1 before 7.1.6 allows local users to obtain sensitive retrieved data from arbitrary accounts in opportunistic circumstances by leveraging previous use of a symlink during archive and retrieve actions. IBM Spectrum Protect (anteriormente Tivoli Storage Manager) 5.5 hasta la versión 6.3 en versiones anteriores a 6.3.2.6, 6.4 en versiones anteriores a 6.4.3.3 y 7.1 en versiones anteriores a 7.1.6 pe... • http://www-01.ibm.com/support/docview.wss?uid=swg1IT13686 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 3%CPEs: 35EXPL: 0CVE-2016-0212
https://notcve.org/view.php?id=CVE-2016-0212
29 Feb 2016 — Stack-based buffer overflow in IBM Tivoli Storage Manager FastBack 5.5 and 6.1.x through 6.1.11.1 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2016-0213 and CVE-2016-0216. Desbordamiento de buffer basado en pila en IBM Tivoli Storage Manager FastBack 5.5 y 6.1.x hasta la versión 6.1.11.1 permite a atacantes remotos causar una denegación de servicio (caída de demonio) a través de vectores no especificados, una vulnerabilidad d... • http://www.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_security_vulnerabilities_in_ibm_tivoli_storage_manager_fastback_cve_2016_0212_cve_2016_0213_cve_2016_0216 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 3%CPEs: 35EXPL: 0CVE-2016-0213
https://notcve.org/view.php?id=CVE-2016-0213
29 Feb 2016 — Stack-based buffer overflow in IBM Tivoli Storage Manager FastBack 5.5 and 6.1.x through 6.1.11.1 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2016-0212 and CVE-2016-0216. Desbordamiento de buffer basado en pila en IBM Tivoli Storage Manager FastBack 5.5 y 6.1.x hasta la versión 6.1.11.1 permite a atacantes remotos causar una denegación de servicio (caída de demonio) a través de vectores no especificados, una vulnerabilidad d... • http://www.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_security_vulnerabilities_in_ibm_tivoli_storage_manager_fastback_cve_2016_0212_cve_2016_0213_cve_2016_0216 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 3.7EPSS: 0%CPEs: 10EXPL: 0CVE-2015-7408
https://notcve.org/view.php?id=CVE-2015-7408
15 Feb 2016 — The server in IBM Spectrum Protect (aka Tivoli Storage Manager) 5.5 and 6.x before 6.3.5.1 and 7.x before 7.1.4 does not properly restrict use of the ASNODENAME option, which allows remote attackers to read or write to backup data by leveraging proxy authority. El servidor en IBM Spectrum Protect (también conocido como Tivoli Storage Manager) 5.5 y 6.x en versiones anteriores a 6.3.5.1 y 7.x en versiones anteriores a 7.1.4 no restringe adecuadamente el uso de la opción ASNODENAME, lo que permite a atacantes... • http://www-01.ibm.com/support/docview.wss?uid=swg1IT13609 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.3EPSS: 0%CPEs: 6EXPL: 0CVE-2015-4951
https://notcve.org/view.php?id=CVE-2015-4951
20 Jan 2016 — Client Acceptor Daemon (CAD) in the client in IBM Spectrum Protect (formerly Tivoli Storage Manager) 5.5 and 6.x before 6.3.2.5, 6.4 before 6.4.3.1, and 7.1 before 7.1.3 allows remote attackers to cause a denial of service (daemon crash) via a crafted Web client URL. Client Acceptor Daemon (CAD) en el client en IBM Spectrum Protect (anteriormente Tivoli Storage Manager) 5.5 y 6.x en versiones anteriores a 6.3.2.5, 6.4 en versiones anteriores a 6.4.3.1 y 7.1 en versiones anteriores a 7.1.3 permite a atacante... • http://www-01.ibm.com/support/docview.wss?uid=swg21973484 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 31%CPEs: 11EXPL: 0CVE-2015-4931 – IBM Tivoli Storage Manager FastBack Server Opcode 4115 Stack Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-4931
30 Jul 2015 — Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12.1 allows remote attackers to execute arbitrary code via a crafted packet, a different vulnerability than CVE-2015-4932, CVE-2015-4933, CVE-2015-4934, and CVE-2015-4935. Desbordamiento del buffer basado en pila en el servidor en IBM Tivoli Storage Manager FastBack 6.1 en versiones anteriores a 6.1.12.1, permite a atacantes remotos ejecutar código arbitrario a través de un paquete manipulado, una vulnerabilidad ... • http://www-01.ibm.com/support/docview.wss?uid=swg21961928 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 31%CPEs: 11EXPL: 0CVE-2015-4932 – IBM Tivoli Storage Manager FastBack Server Opcode 1365 Files Restore Agents Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-4932
30 Jul 2015 — Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12.1 allows remote attackers to execute arbitrary code via a crafted packet, a different vulnerability than CVE-2015-4931, CVE-2015-4933, CVE-2015-4934, and CVE-2015-4935. Desbordamiento del buffer basado en pila en el servidor en IBM Tivoli Storage Manager FastBack 6.1 en versiones anteriores a 6.1.12.1, permite a atacantes remotos ejecutar código arbitrario a través de un paquete manipulado, una vulnerabilidad ... • http://www-01.ibm.com/support/docview.wss?uid=swg21961928 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 32%CPEs: 11EXPL: 0CVE-2015-4933 – IBM Tivoli Storage Manager FastBack Server Opcode 1365 Volumes Restore Agents Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-4933
30 Jul 2015 — Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12.1 allows remote attackers to execute arbitrary code via a crafted packet, a different vulnerability than CVE-2015-4931, CVE-2015-4932, CVE-2015-4934, and CVE-2015-4935. Desbordamiento del buffer basado en pila en el servidor en IBM Tivoli Storage Manager FastBack 6.1 en versiones anteriores a 6.1.12.1, permite a atacantes remotos ejecutar código arbitrario a través de un paquete manipulado, una vulnerabilidad ... • http://www-01.ibm.com/support/docview.wss?uid=swg21961928 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 32%CPEs: 11EXPL: 0CVE-2015-4934 – IBM Tivoli Storage Manager FastBack Server Opcode 8192 Stack Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-4934
30 Jul 2015 — Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12.1 allows remote attackers to execute arbitrary code via a crafted packet, a different vulnerability than CVE-2015-4931, CVE-2015-4932, CVE-2015-4933, and CVE-2015-4935. Desbordamiento del buffer basado en pila en el servidor en IBM Tivoli Storage Manager FastBack 6.1 en versiones anteriores a 6.1.12.1, permite a atacantes remotos ejecutar código arbitrario a través de un paquete manipulado, una vulnerabilidad ... • http://www-01.ibm.com/support/docview.wss?uid=swg21961928 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 32%CPEs: 11EXPL: 0CVE-2015-4935 – IBM Tivoli Storage Manager FastBack Server Opcode 4755 Stack Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-4935
30 Jul 2015 — Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12.1 allows remote attackers to execute arbitrary code via a crafted packet, a different vulnerability than CVE-2015-4931, CVE-2015-4932, CVE-2015-4933, and CVE-2015-4934. Desbordamiento del buffer basado en pila en el servidor en IBM Tivoli Storage Manager FastBack 6.1 en versiones anteriores a 6.1.12.1, permite a atacantes remotos ejecutar código arbitrario a través de un paquete manipulado, una vulnerabilidad ... • http://www-01.ibm.com/support/docview.wss?uid=swg21961928 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •