SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (Embedded Server/Appliance)  >   F5 Enterprise Manager Vendors:   F5 Networks
F5 Enterprise Manager Datastor Kernel Bug Lets Remote Authenticated Users Deny Service and Gain Elevated Privileges
SecurityTracker Alert ID:  1034026
SecurityTracker URL:  http://securitytracker.com/id/1034026
CVE Reference:   CVE-2015-7394   (Links to External Site)
Date:  Oct 29 2015
Impact:   Denial of service via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 3.0.0 - 3.1.1
Description:   A vulnerability was reported in F5 Enterprise Manager. A remote authenticated user can cause denial of service conditions on the target system. A remote authenticated user can gain elevated privileges.

A remote authenticated user that can upload and execute customized code may be able to trigger a flaw in the Datastor kernel to cause denial of service conditions or gain administrative access.

The vendor has assigned ID 550231 to this vulnerability.

Francois Goichon of Context Information Security reported this vulnerability.

Impact:   A remote authenticated user can cause denial of service conditions on the target system.

A remote authenticated user can gain elevated privileges on the target system.

Solution:   No solution was available at the time of this entry.

The vendor's advisory is available at:

https://support.f5.com/kb/en-us/solutions/public/17000/400/sol17407.html

Vendor URL:  support.f5.com/kb/en-us/solutions/public/17000/400/sol17407.html (Links to External Site)
Cause:   Not specified

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC