Published:2013/02/15  Last Updated:2013/02/15

Information from LSI Japan

Vulnerability ID:JVN#02596643
Title:3DM (3ware Disk Manager) vulnerable to directory traversal

This is a statement from the vendor itself with no modification by JPCERT/CC.

The RAID management tool 3DM included in 3ware 7000 series and 8000 series has a danger of directry traversal. Would you please use the 3DM2 management tool instead. Depending on the firmware you use, you may need to update the firmware in order to use 3DM2.
3DM2 is the standard RAID management tool for 3ware 9000 series. So, no action required for 9000 series users.