Cross scripting and preconfigured password vulnerabilities have been reported to exist in the Quantum Scalar i500, Dell ML6000 and IBM TS3310 tape libraries.
Quantum Scalar i500, Dell ML6000 and IBM TS3310 enterprise tape libraries contain multiple web interface and preconfigured account password vulnerabilities.
The Quantum Scalar i500 and Dell ML6000 tape libraries contain the following web interface vulnerabilities.
http://device/checkQKMProg.htm allows compromise of active session ids (CVE-2012-1842).
http://device/saveRestore.htm (via the fileName POST parameter) allows execution of arbitrary commands as the root user, by an authenticated remote web user (CVE-2012-1843).
The CVSS metrics below apply to CVE-2012-1844.
An attacker with access to a local user account or via malicious URL can execute arbitrary code or commands on the vulnerable system. It has been reported to us that customer data residing on the tapes within the libraries are not affected.
Dell Computer Corporation, Inc.
Thanks to NOAA CIRT for reporting this vulnerability.
This document was written by Michael Orlando.