Intrusion Prevention



This indicates an attempt to exploit a buffer overflow vulnerability in IBM Tivoli Storage Manager Express.
The vulnerability is in the TSM Express Backup Server service (dsmsvc.exe). An attacker can overflow a heap buffer via a user supplied length value. This makes it possible to execute arbitrary code on vulnerable installations. Authentication is not required to exploit this vulnerability.

Affected Products

IBM Tivoli Storage Manager Express 5.3.


System Compromise: remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to IBM Tivoli Storage Manager Express

CVE References