Computer Security
[EN] securityvulns.ru no-pyccku


IBM Tivoli Storage Manager Remote Agent buffer overflow
Published:04.05.2009
Source:
SecurityVulns ID:9892
Type:remote
Threat Level:
6/10
Description:Few different buffer overflows.
Affected:IBM : Tivoli Storage Manager Express Client 5.3
CVE:CVE-2008-4828 (Multiple stack-based buffer overflows in dsmagent.exe in the Remote Agent Service in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, and 5.4.0.0 through 5.4.1.96, and the TSM Express client 5.3.3.0 through 5.3.6.4, allow remote attackers to execute arbitrary code via (1) a request packet that is not properly parsed by an unspecified "generic string handling function" or (2) a crafted NodeName in a dicuGetIdentifyRequest request packet, related to the (a) Web GUI and (b) Java GUI.)
Original documentdocumentSECUNIA, Secunia Research: IBM Tivoli Storage Manager Remote Agent Service Buffer Overflows (04.05.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod