Intrusion PreventionIBM.TSM.Express.Length.Parsing.Buffer.Overflow
Description
This indicates an attempt to exploit a buffer overflow vulnerability in IBM Tivoli Storage Manager Express.
The vulnerability is in the TSM Express Backup Server service (dsmsvc.exe). An attacker can overflow a heap buffer via a user supplied length value. This makes it possible to execute arbitrary code on vulnerable installations. Authentication is not required to exploit this vulnerability.
Affected Products
IBM Tivoli Storage Manager Express 5.3.
Impact
System Compromise: remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to IBM Tivoli Storage Manager Express 5.3.7.3.
ftp://service.boulder.ibm.com/storage/tivoli-storage-management/patches/express/NT/5.3.7.3/TSMEXP5373.exe
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Status | Detail |
|---|---|---|---|
| 2024-06-26 | 28.815 |
Modified
|
Name:IBM. Tivoli. Storage. Manager. Express. dsmsvc. Buffer. Overflow:IBM. TSM. Express. Length. Parsing. Buffer. Overflow |
| ID | 15301 |
| Created | Jan 17, 2008 |
| Updated | Jun 25, 2024 |
| CVE ID | |
| Risk |
|
| Exploit Prediction Score | 36.03% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | IBM |
| Profile Type | Buffer Errors |