Severity Rating: High
Software Affected:
· IBM Spectrum Protect Plus 10.1.0-10.1.5
Overview
Multiple vulnerabilities have been reported in IBM Spectrum Protect Plus
which could allow a remote attacker to cause a denial of service, or hijack
DNS sessions and execute arbitrary code on the targeted system.
Description
1. Remote Code Execution Vulnerability (CVE-2020-4469)
This vulnerability exists in IBM Spectrum Protect Plus due to an incomplete
fix for CVE-2020-4211.A remote attacker could exploit this vulnerability by
using a specially crafted HTTP command on the system. Successful
exploitation of this vulnerability could execute arbitrary command on the
system.
2. Denial of Service Vulnerability (CVE-2020-4471)
This vulnerability exists in IBM Spectrum Protect Plus due to improper
handling of HTTP command by the affected software. An unauthenticated
remote attacker could exploit this vulnerability by sending a specially
crafted HTTP command to remote server. Successful exploitation of this
vulnerability could cause a denial of service or hijack DNS sessions.
3. Remote Code Execution Vulnerability (CVE-2020-4470)
This vulnerability exists in IBM Spectrum Protect Plus due to improper
handling of Administrative Console by the affected software. An
authenticated remote attacker could exploit this vulnerability to upload
the arbitrary files to the targeted remote server. Successful exploitation
of this vulnerability could execute arbitrary command on the system.
Solution
Apply appropriate security updates as mentioned in the IBM Advisory:
Vendor Information
References
CVE Name
CVE-2020-4469
CVE-2020-4470
CVE-2020-4471
About Cert Advisory
We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.