SB2016050806 - Multiple vulnerabilities in SAN Volume Controller and Storwize Family 

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2016050806

SB2016050806 - Multiple vulnerabilities in SAN Volume Controller and Storwize Family

Published: May 8, 2016 Updated: July 19, 2023

Security Bulletin ID SB2016050806
Severity
Low
Patch available
YES
Number of vulnerabilities 2
Exploitation vector Local access
Highest impact Code execution

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.


1) Input validation error (CVE-ID: CVE-2015-6563)

The vulnerability allows a local user to impersonate other users on the system.

The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c.


2) Use-after free (CVE-ID: CVE-2015-6564)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use after free error within the mm_answer_pam_free_ctx() function in monitor.c in sshd daemon on non-OpenBSD platforms. A local unprivileged user can send an unexpected early MONITOR_REQ_PAM_FREE_CTX request and gain root privileges on the system.


Remediation

Install update from vendor's website.

References