Multiple vulnerabilities in IBM Tivoli System Automation Application Manager
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 4 |
| CVE-ID | CVE-2014-0114 CVE-2012-1007 CVE-2016-1182 CVE-2016-1181 |
| CWE-ID | CWE-470 CWE-79 CWE-20 |
| Exploitation vector | Network |
| Public exploit | Vulnerability #1 is being exploited in the wild. |
| Vulnerable software Subscribe |
IBM Tivoli System Automation Application Manager Server applications / Other server solutions |
| Vendor | IBM Corporation |
Security Bulletin
This security bulletin contains information about 4 vulnerabilities.
1) Unsafe reflection
EUVDB-ID: #VU65653
Risk: Medium
CVSSv3.1: 7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:H/RL:O/RC:C]
CVE-ID: CVE-2014-0114
CWE-ID:
CWE-470 - Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
Exploit availability: Yes
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to Apache Commons BeanUtils does not suppress the class property. A remote unauthenticated attacker can manipulate the ClassLoader and execute arbitrary code via the class parameter
MitigationInstall updates from vendor's website.
Vulnerable software versionsIBM Tivoli System Automation Application Manager: All versions
External linkshttp://www.ibm.com/support/pages/node/719303
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
Yes. This vulnerability is being exploited in the wild.
2) Cross-site scripting
EUVDB-ID: #VU71647
Risk: Low
CVSSv3.1: 3.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2012-1007
CWE-ID:
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Exploit availability: No
DescriptionVulnerability allows a remote attacker to perform Cross-site scripting attacks.
An input validation error exists in Apache Struts when processing the name parameter to struts-examples/upload/upload-submit.do, or the message parameter to struts-cookbook/processSimple.do or struts-cookbook/processDyna.do. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in victim's browser in security context of vulnerable website.
Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.
MitigationCybersecurity Help is currently unaware of any official solution to address this vulnerability..
Vulnerable software versionsIBM Tivoli System Automation Application Manager: All versions
External linkshttp://www.ibm.com/support/pages/node/719303
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Improper input validation
EUVDB-ID: #VU2803
Risk: Medium
CVSSv3.1: 6.2 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2016-1182
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform cross-site scripting attack or cause DoS condition on the target system.
The weakness exists due to improper restrictions of the Validation configuration by ActionServlet.java in Apache Struts. A remote attacker can send a specially crafted input, trick the victim into opening it and conduct cross-site scripting (XSS) attacks or cause the application to crash.
Successful exploitation of the vulnerability may result in denial of service.
Update to version 1.3.10.
IBM Tivoli System Automation Application Manager: All versions
External linkshttp://www.ibm.com/support/pages/node/719303
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Improper input validation
EUVDB-ID: #VU28582
Risk: High
CVSSv3.1: 7.1 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2016-1181
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
The vulnerability exists due to improper input validation within the Common Component Integration (Struts1) component in Oracle Retail Markdown Optimization. A remote non-authenticated attacker can exploit this vulnerability to execute arbitrary code.
MitigationInstall updates from vendor's website.
Vulnerable software versionsIBM Tivoli System Automation Application Manager: All versions
External linkshttp://www.ibm.com/support/pages/node/719303
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
