virus logo Intrusion Prevention

IBM.Tivoli.Storage.Manager.Client.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against a buffer-overflow vulnerability in IBM Tivoli Storage Manager Client.
The vulnerability is caused by an error when the vulnerable software handles a malicious request. It allows a remote attacker to execute arbitrary code via sending a crafted request.

affected-products-logoAffected Products

IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, and 5.4.0.0 through 5.4.1.96, and the TSM Express client 5.3.3.0 through 5.3.6.4

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to the latest version.
TSM 5.5 all platforms:
Update to version 5.5.2.
TSM 5.4 all platforms:
Update to version 5.4.2.7.
TSM 5.3:
Update to version 5.3.6.6
TSM 5.2:
Update to 5.2.5.4 (AIX), 5.2.5.4 (Solaris SPARC), 5.2.5.4 (HP PA-RISC), 5.2.5.4 (Windows x32), or 5.1.8.3 (Tru64 UNIX).
TSM Express:
Update to version 5.3.6.6.
TSM 5.5 SSL client update packages:
Update to 5.5.2.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 17564
Created Sep 11, 2009
Updated Mar 22, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2008-4828
Exploit Prediction Score 95.38%
Default Action drop
Active
Affected OS Windows, Solaris, Other
Affected App IBM