Miembros de
Boletines de Vulnerabilidades |
Security Bulletin: Vulnerability with Event Action Plan affects IBM Systems Director (CVE-2015-1992) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
Event Action Plan (EAP) allows a carefully crafted action plan to execute arbitrary unauthorized commands on a remote system. CVE(s): CVE-2015-1992 Affected product(s) and affected version(s): From the IBM System Director command line enter smcli lsver to determine the level of IBM System Director installed. 5.2.x.x 6.1.x.x 6.2.0.x 6.2.1.x 6.3.0.0 6.3.1.x 6.3.2.x 6.3.3.x 6.3.5.0 6.3.6.0 Refer to the following reference URLs for remediation and additional vulnerability More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_vulnerability_with_event_action_plan_affects_ibm_systems_director_cve_2015_1992?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2015-1992 ,CVE-2015-0478 ,CVE-2015-0488 ,CVE-2015-1916 ,CVE-2015-4000 ,CVE-2015-2613 ,CVE-2015-2601 ,CVE-2015-2625 ,CVE-2015-1931 ,CVE-2015-2808 ,CVE-2015-0138 ,CVE-2015-1927 and CVE-2015-0250. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-08-14 |