IBM.Tivoli.Storage.Manager.Client.Buffer.Overflow
Description
This indicates an attack attempt against a buffer-overflow vulnerability in IBM Tivoli Storage Manager Client.
The vulnerability is caused by an error when the vulnerable software handles a malicious request. It allows a remote attacker to execute arbitrary code via sending a crafted request.
Affected Products
IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, and 5.4.0.0 through 5.4.1.96, and the TSM Express client 5.3.3.0 through 5.3.6.4
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest version.
TSM 5.5 all platforms:
Update to version 5.5.2.
TSM 5.4 all platforms:
Update to version 5.4.2.7.
TSM 5.3:
Update to version 5.3.6.6
TSM 5.2:
Update to 5.2.5.4 (AIX), 5.2.5.4 (Solaris SPARC), 5.2.5.4 (HP PA-RISC), 5.2.5.4 (Windows x32), or 5.1.8.3 (Tru64 UNIX).
TSM Express:
Update to version 5.3.6.6.
TSM 5.5 SSL client update packages:
Update to 5.5.2.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |