{ "id": "CVE-2016-6115", "sourceIdentifier": "psirt@us.ibm.com", "published": "2017-02-01T22:59:00.697", "lastModified": "2017-02-15T14:14:39.820", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "IBM General Parallel File System is vulnerable to a buffer overflow. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the system with root privileges or cause the server to crash." }, { "lang": "es", "value": "IBM General Parallel File System es vulnerable a un desbordamiento de b\u00fafer. Un atacante remoto autenticado podr\u00eda desbordar un b\u00fafer y ejecutar c\u00f3digo arbitrario en el sistema con privilegios de root o provocar que el servidor se caiga." } ], "metrics": { "cvssMetricV30": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "3.0", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH" }, "exploitabilityScore": 1.2, "impactScore": 5.9 } ], "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "SINGLE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 9.0 }, "baseSeverity": "HIGH", "exploitabilityScore": 8.0, "impactScore": 10.0, "acInsufInfo": true, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-119" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:general_parallel_file_system:4.1.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "E78F4327-0160-467E-8C2C-BDEBB4149227" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:general_parallel_file_system:4.1.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "BDD19B4F-5738-4CB1-99FC-F40FDA8388AE" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:general_parallel_file_system:4.1.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "B497D629-62AB-4F21-BDF4-02336A19E04C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:general_parallel_file_system:4.1.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "10E68BB2-4132-46F1-B8E9-9FA03FEB92BF" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:general_parallel_file_system:4.1.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "E1CBA1A7-02AF-4D59-A6FF-9C52903986EE" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:general_parallel_file_system:4.1.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "BEAC1912-1412-45B6-920C-A52510095977" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:general_parallel_file_system:4.1.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "59A4A5C6-8DF0-4431-BE2C-5C6815371C98" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:general_parallel_file_system:4.1.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "F90908FF-0E10-4AFD-A38C-4D5E50C05FF3" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:general_parallel_file_system:4.1.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "591E5985-29A1-4C06-8832-DA1587CFE101" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "09C3AC64-B03E-4C63-B47D-608795A24321" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "2E29D816-7A73-47EA-8DE6-E553CA0D1079" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "18C5A85C-F932-44CF-B3EA-691737C96C52" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "9385B07C-881D-4A4E-A0F5-FF1BC88F8CFF" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "27319318-1C09-4CEE-BAE2-6E52C8FD8DCA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "85F22D48-CB9C-434A-AFD7-50E4E980D1DA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "52D0326F-B03A-4476-8E94-BC0D8ADD5321" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.6:*:*:*:*:*:*:*", "matchCriteriaId": "564BDF5A-EAFF-47F5-A670-2019BB508DD5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.7:*:*:*:*:*:*:*", "matchCriteriaId": "5E93E3DC-F8FA-493F-AD79-0DED309F3D9D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.8:*:*:*:*:*:*:*", "matchCriteriaId": "1578B640-B312-4BE8-8036-9DCC7201B04E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.9:*:*:*:*:*:*:*", "matchCriteriaId": "07B77EAE-2C00-4FC9-82F1-42638E7948A2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.10:*:*:*:*:*:*:*", "matchCriteriaId": "B33EDF97-2750-4041-BCA3-77E1235173AF" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.2.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "9A55A717-5CA2-4073-80AA-16044EC23B7B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "11BAE960-B5C8-4566-8D18-B2754069C933" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.2.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "D788F7B7-E3F5-495D-BF0D-EB5D6A57D84F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.2.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "33B349F3-C4A5-4EDA-8579-17AF297E4BA0" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "36357865-3811-45EF-98CB-0FA7D2FC0497" }, { "vulnerable": true, "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.2.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "6E32967B-9D22-4120-8C58-FCCC2ECC424F" } ] } ] } ], "references": [ { "url": "http://www.ibm.com/support/docview.wss?uid=ssg1S1009639", "source": "psirt@us.ibm.com", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "http://www.securityfocus.com/bid/95272", "source": "psirt@us.ibm.com", "tags": [ "Third Party Advisory", "VDB Entry" ] } ] }