Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: IBM Tivoli Monitoring Remote Code Execution (CVE-2015-5003) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
An IBM Tivoli Monitoring portal client user account that has view authority for Take Action commands can provide specially crafted input to have additional command(s) executed on the remote IBM Tivoli Monitoring system.. CVE(s): CVE-2015-5003 Affected product(s) and affected version(s): ITM version 6.3.0 through 6.3.0 Fix Pack 06 ITM version 6.2.3 through 6.2.3 Fix Pack 05 ITM version 6.2.2 through 6.2.2 Fix Pack 09 Refer to the following reference URLs for remediation and More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_ibm_tivoli_monitoring_remote_code_execution_cve_2015_5003?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2015-5003 ,CVE-2015-4974 ,CVE-2015-4981 ,CVE-2015-0209 ,CVE-2015-0286 ,CVE-2015-0287 ,CVE-2015-0288 ,CVE-2015-0289 ,CVE-2015-0292 and CVE-2015-0293. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-11-26 |