CVSS: 2.5EPSS: 0%CPEs: 66EXPL: 0CVE-2016-2894
https://notcve.org/view.php?id=CVE-2016-2894
IBM Spectrum Protect (formerly Tivoli Storage Manager) 5.5 through 6.3 before 6.3.2.6, 6.4 before 6.4.3.3, and 7.1 before 7.1.6 allows local users to obtain sensitive retrieved data from arbitrary accounts in opportunistic circumstances by leveraging previous use of a symlink during archive and retrieve actions. IBM Spectrum Protect (anteriormente Tivoli Storage Manager) 5.5 hasta la versión 6.3 en versiones anteriores a 6.3.2.6, 6.4 en versiones anteriores a 6.4.3.3 y 7.1 en versiones anteriores a 7.1.6 permite a usuarios locales obtener datos sensibles recuperados de cuentas arbitrarias en circunstancias oportunistas aprovechando un uso anterior de un symlink durante acciones de archivo y recuperación. • http://www-01.ibm.com/support/docview.wss?uid=swg1IT13686 http://www-01.ibm.com/support/docview.wss?uid=swg21985579 http://www.securityfocus.com/bid/91534 http://www.securitytracker.com/id/1036220 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 35EXPL: 0CVE-2015-8523
https://notcve.org/view.php?id=CVE-2015-8523
The server in IBM Tivoli Storage Manager FastBack 5.5.x and 6.x before 6.1.12.2 allows remote attackers to cause a denial of service (service crash) via crafted packets to a TCP port. El servidor en IBM Tivoli Storage Manager FastBack 5.5.x y 6.x en versiones anteriores a 6.1.12.2 permite a atacantes remotos provocar una denegación de servicio (caída de servicio) a través de paquetes manipulados a un puerto TCP. • http://www-01.ibm.com/support/docview.wss?uid=swg21975536 http://www.securityfocus.com/bid/84164 • CWE-284: Improper Access Control •
CVSS: 9.8EPSS: 86%CPEs: 35EXPL: 0CVE-2015-8521
https://notcve.org/view.php?id=CVE-2015-8521
Buffer overflow in the server in IBM Tivoli Storage Manager FastBack 5.5.x and 6.x before 6.1.12.2 allows remote attackers to execute arbitrary code via a crafted command, a different vulnerability than CVE-2015-8519, CVE-2015-8520, and CVE-2015-8522. Desbordamiento de buffer en el servidor en IBM Tivoli Storage Manager FastBack 5.5.x y 6.x en versiones anteriores a 6.1.12.2 permite a atacantes remotos ejecutar código arbitrario a través de un comando manipulado, una vulnerabilidad diferente a CVE-2015-8519, CVE-2015-8520 y CVE-2015-8522. • http://www-01.ibm.com/support/docview.wss?uid=swg21975536 http://www.securityfocus.com/bid/84167 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 86%CPEs: 35EXPL: 0CVE-2015-8522
https://notcve.org/view.php?id=CVE-2015-8522
Buffer overflow in the server in IBM Tivoli Storage Manager FastBack 5.5.x and 6.x before 6.1.12.2 allows remote attackers to execute arbitrary code via a crafted command, a different vulnerability than CVE-2015-8519, CVE-2015-8520, and CVE-2015-8521. Desbordamiento de buffer en el servidor en IBM Tivoli Storage Manager FastBack 5.5.x y 6.x en versiones anteriores a 6.1.12.2 permite a atacantes remotos ejecutar código arbitrario a través de un comando manipulado, una vulnerabilidad diferente a CVE-2015-8519, CVE-2015-8520 y CVE-2015-8521. • http://www-01.ibm.com/support/docview.wss?uid=swg21975536 http://www.securityfocus.com/bid/84163 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 86%CPEs: 35EXPL: 0CVE-2015-8520
https://notcve.org/view.php?id=CVE-2015-8520
Buffer overflow in the server in IBM Tivoli Storage Manager FastBack 5.5.x and 6.x before 6.1.12.2 allows remote attackers to execute arbitrary code via a crafted command, a different vulnerability than CVE-2015-8519, CVE-2015-8521, and CVE-2015-8522. Desbordamiento de buffer en el servidor en IBM Tivoli Storage Manager FastBack 5.5.x y 6.x en versiones anteriores a 6.1.12.2 permite a atacantes remotos ejecutar código arbitrario a través de un comando manipulado, una vulnerabilidad diferente a CVE-2015-8519, CVE-2015-8521 y CVE-2015-8522. • http://www-01.ibm.com/support/docview.wss?uid=swg21975536 http://www.securityfocus.com/bid/84166 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •