IBM Tivoli Storage FlashCopy Manager for VMware 3.1.x < 126.96.36.199 / 3.2.x < 188.8.131.52 / 4.1.x < 184.108.40.206 Command Execution
Critical Nessus Plugin ID 87822
SynopsisA backup application installed on the remote host is affected by multiple remote command execution vulnerabilities.
DescriptionThe version of IBM Tivoli Storage FlashCopy Manager for VMware installed on the remote host is affected by multiple vulnerabilities :
- An unspecified flaw exists in the graphical user interface that allows an unauthenticated, remote attacker to perform backup and restore operations, along with other administrative commands, resulting in a possible adverse impact on the integrity of system operation or the disclosure of confidential information. (CVE-2015-7425)
- A flaw exists in the IBM Data Protection Extension that can result in privilege escalation. An authenticated attacker can exploit this to select an existing virtual machine from the vSphere inventory and perform a Restore operation without having the required privilege for the operation. Although performing this operation does not overwrite the existing virtual machine, the attacker can create a new virtual machine holding the same data, allowing disclosure of information. (CVE-2015-7429)
SolutionUpgrade to Tivoli Storage FlashCopy Manager for VMware version 220.127.116.11 / 18.104.22.168 / 22.214.171.124 or later.