CVE-2011-1223

Sažetak

Buffer overflow in the Alternate Data Stream (aka ADS or named stream) functionality in the backup-archive client in IBM Tivoli Storage Manager (TSM) before 5.4.3.4, 5.5.x before 5.5.3, 6.x before 6.1.4, and 6.2.x before 6.2.2 on Windows allows local users to gain privileges via unspecified vectors.

Reference

http://secunia.com/advisories/45098
http://securitytracker.com/id?1025741
http://www.ibm.com/support/docview.wss?uid=swg1IC77052
http://www.ibm.com/support/docview.wss?uid=swg21457604
http://www.securityfocus.com/bid/48519

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

19-07-2011 - 04:00

Objavljeno

17-07-2011 - 20:55