Required CVE Record Information
Description
systest.php on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the lpres parameter.
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html x_transferred
- exploit-db.com: 34132 exploitx_transferred
- http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983 x_transferred
- exchange.xforce.ibmcloud.com: ibm-gcm-cve20143085-rce(94091) vdb-entryx_transferred