CVE-2015-1986

IBM Tivoli Storage Manager FastBack 6.1 - Remote Command Execution

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-1986. PoCs published by MayaOfVeil.

AI-analyzed exploit summary This exploit targets CVE-2015-1986, a buffer overflow vulnerability in the psAgentCommand function. It uses a ROP chain to bypass DEP and execute shellcode, achieving remote code execution.

Description

The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to execute arbitrary commands via unspecified vectors, a different vulnerability than CVE-2015-1938.

Exploits (1)

nomisec WORKING POC 1 stars

by MayaOfVeil · poc

https://github.com/MayaOfVeil/CVE-2015-1986

View Code ZIP pw:eip

This exploit targets CVE-2015-1986, a buffer overflow vulnerability in the psAgentCommand function. It uses a ROP chain to bypass DEP and execute shellcode, achieving remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Reliable

Target: Unknown (likely a proprietary software using psAgentCommand)

No auth needed

Prerequisites: Network access to the target on port 11460

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1032773

Third Party Advisory, VDB Entry x_refsource_misc

http://www.zerodayinitiative.com/advisories/ZDI-15-274

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/75461

Vendor Advisory x_refsource_confirm

http://www-01.ibm.com/support/docview.wss?uid=swg21959398

Scores

EPSS 0.0780

EPSS Percentile 93.9%

Details

CWE

CWE-77

Status published

Products (11)

ibm/tivoli_storage_manager_fastback 6.1.0.0

ibm/tivoli_storage_manager_fastback 6.1.1.0

ibm/tivoli_storage_manager_fastback 6.1.7.2

ibm/tivoli_storage_manager_fastback 6.1.8.0

ibm/tivoli_storage_manager_fastback 6.1.8.1

ibm/tivoli_storage_manager_fastback 6.1.9.0

ibm/tivoli_storage_manager_fastback 6.1.9.1

ibm/tivoli_storage_manager_fastback 6.1.10.0

ibm/tivoli_storage_manager_fastback 6.1.10.1

ibm/tivoli_storage_manager_fastback 6.1.11.0

... and 1 more

Published Jun 30, 2015

Tracked Since Feb 18, 2026