Summary
Detail | |||
---|---|---|---|
Vendor | Ibm | First view | 2008-10-30 |
Product | Tivoli Storage Manager Client | Last view | 2009-05-05 |
Version | 5.5.0 | Type | Application |
Update | * | ||
Edition | * | ||
Language | * | ||
Sofware Edition | * | ||
Target Software | * | ||
Target Hardware | * | ||
Other | * | ||
CPE Product | cpe:2.3:a:ibm:tivoli_storage_manager_client |
Activity : Overall
Related : CVE
Date | Alert | Description | |
---|---|---|---|
7.5 | 2009-05-05 | CVE-2009-1521 | Unspecified vulnerability in the Java GUI in the IBM Tivoli Storage Manager (TSM) client 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.5, 5.4.0.0 through 5.4.2.6, and 5.5.0.0 through 5.5.1.17, and the TSM Express client 5.3.3.0 through 5.3.6.5, allows attackers to read or modify arbitrary files via unknown vectors. |
10 | 2008-10-30 | CVE-2008-4801 | Heap-based buffer overflow in the Data Protection for SQL CAD service (aka dsmcat.exe) in the Client Acceptor Daemon (CAD) and the scheduler in the Backup-Archive client 5.1.0.0 through 5.1.8.1, 5.2.0.0 through 5.2.5.2, 5.3.0.0 through 5.3.6.1, 5.4.0.0 through 5.4.2.2, and 5.5.0.0 through 5.5.0.91 in IBM Tivoli Storage Manager (TSM); and the Backup-Archive client in TSM Express; allows remote attackers to execute arbitrary code by sending a large amount of crafted data to a TCP port. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
100% (1) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
Open Source Vulnerability Database (OSVDB)
id | Description |
---|---|
54234 | IBM Tivoli Storage Manager (TSM) Client Java GUI Unspecified Privilege Escala... |
49442 | IBM Tivoli Storage Manager (TSM) Express for Microsoft SQL SQL CAD Data Prote... |
OpenVAS Exploits
id | Description |
---|---|
2008-11-05 | Name : IBM TSM Client Remote Heap BOF Vulnerability File : nvt/secpod_ibm_tsm_client_remote_bof_vuln_900169.nasl |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | IBM Tivoli Storage Manager Client Remote Heap Buffer Overflow RuleID : 20250 - Type : SERVER-OTHER - Revision : 6 |