CVE-2014-2959CVE-2014-2959

Affected configuration(s):

cpe:/h:dell:powervault_ml6000:32u
cpe:/h:dell:powervault_ml6000:41u
cpe:/h:quantum:scalar_i500:5u
cpe:/h:quantum:scalar_i500:14u
cpe:/h:quantum:scalar_i500:23u
cpe:/o:dell:powervault_ml6000_firmware:i8.2.0.1_%28641g.gs003%29
cpe:/o:quantum:scalar_i500_firmware:i8.2.2.1_%28646g.gs002%29

Date published: 2014-06-02T15:55:03.500-04:00

Date last modified: 2014-06-26T00:50:04.050-04:00

CVSS Score: 9.0

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://www.kb.cert.org/vuls/id/124908

Summary: logViewer.htm on the Dell ML6000 tape backup system with firmware before i8.2.0.2 (641G.GS103) and the Quantum Scalar i500 tape backup system with firmware before i8.2.2.1 (646G.GS002) allows remote attackers to execute arbitrary commands via shell metacharacters in a pathname parameter.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *