CVE-2008-4563

Sažetak

Heap-based buffer overflow in adsmdll.dll 5.3.7.7296, as used by the daemon (dsmsvc.exe) in the backup server in IBM Tivoli Storage Manager (TSM) Express 5.3.7.3 and earlier and TSM 5.2, 5.3 before 5.3.6.0, and 5.4.0.0 through 5.4.4.0, allows remote attackers to execute arbitrary code via a crafted length value.

Reference

http://archives.neohapsis.com/archives/fulldisclosure/2009-03/0192.html
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=775
http://osvdb.org/52617
http://secunia.com/advisories/34245
http://securitytracker.com/id?1021837
http://www.securityfocus.com/bid/34077
http://www.vupen.com/english/advisories/2009/0669
http://www-01.ibm.com/support/docview.wss?uid=swg21377388
https://exchange.xforce.ibmcloud.com/vulnerabilities/49188

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

08-08-2017 - 01:32

Objavljeno

11-03-2009 - 14:19