CVE-2009-1520

EUVD-2009-1517
Buffer overflow in the Web GUI in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, 5.4.0.0 through 5.4.2.6, and 5.5.0.0 through 5.5.1.17 allows attackers to cause a denial of service (application crash) or execute arbitrary code via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
Affected Products (NVD)
VendorProductVersion
ibmtivoli_storage_manager_client
5.1
ibmtivoli_storage_manager_client
5.1.8.0
ibmtivoli_storage_manager_client
5.1.8.2
ibmtivoli_storage_manager_client
5.2
ibmtivoli_storage_manager_client
5.2.5.1
ibmtivoli_storage_manager_client
5.2.5.2
ibmtivoli_storage_manager_client
5.2.5.3
ibmtivoli_storage_manager_client
5.3
ibmtivoli_storage_manager_client
5.3.5.2
ibmtivoli_storage_manager_client
5.3.5.3
ibmtivoli_storage_manager_client
5.3.6.3
ibmtivoli_storage_manager_client
5.3.6.4
ibmtivoli_storage_manager_client
5.4
ibmtivoli_storage_manager_client
5.4.1.1
ibmtivoli_storage_manager_client
5.4.1.2
ibmtivoli_storage_manager_client
5.4.1.96
ibmtivoli_storage_manager_express
5.3
ibmtivoli_storage_manager_express
5.3.3.0
ibmtivoli_storage_manager_express
5.3.6.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/32604
http://www-01.ibm.com/support/docview.wss?uid=swg21384389
http://www-1.ibm.com/support/docview.wss?uid=swg1IC59994
http://www.vupen.com/english/advisories/2009/1235
https://exchange.xforce.ibmcloud.com/vulnerabilities/50328
http://secunia.com/advisories/32604
http://www-01.ibm.com/support/docview.wss?uid=swg21384389
http://www-1.ibm.com/support/docview.wss?uid=swg1IC59994
http://www.vupen.com/english/advisories/2009/1235
https://exchange.xforce.ibmcloud.com/vulnerabilities/50328