| Check Point Reference: |
CPAI-2009-307 |
| Date Published: |
12 Dec 2009 |
| Severity: |
Critical
|
| Last Updated: |
Thursday 01 January, 2009 |
| Source: |
Secunia Advisory: SA32534 |
| Industry Reference: | CVE-2009-3853 |
| Protection Provided by: |
|
| Who is Vulnerable? | IBM Tivoli Storage Manager Client 5.3.0.0 to 5.3.6.6
IBM Tivoli Storage Manager Client 5.4.0.0 to 5.4.2.7
IBM Tivoli Storage Manager Client 5.5.0.0 to 5.5.2.1
IBM Tivoli Storage Manager Client 6.1.0.0 to 6.1.0.1
IBM Tivoli Storage Manager Express Client 5.3.3.0 to 5.3.6.6 |
| Vulnerability Description |
A buffer overflow vulnerability exists in IBM Tivoli Storage Manager Client software, a backup designed to protect data from failures and other errors by storing backups and archiving data. The vulnerability is due to a boundary error in the Client Acceptor Daemon (CAD) service while processing a specially crafted packet. Remote unauthenticated attackers can exploit this vulnerability to inject and execute arbitrary code on the target system. Successful exploitation of this vulnerability would allow for arbitrary code execution. |
| Update/Patch Avaliable | The vendor, IBM, has released an advisory addressing this vulnerability:
http://www-01.ibm.com/support/docview.wss?uid=swg21405562 |
| Vulnerability Details | The vulnerability is due to a boundary error in the Client Acceptor Daemon (CAD) service while processing a specially crafted packet sent to the CAD service. Remote unauthenticated attacker can exploit this vulnerability by sending a specially crafted packet with an overly long Computer Name to the CAD service on an affected installation of the TSM Client. |
Feedback