APP: Tivoli Storage Manager Client Buffer Overflow
This signature detects attempts to exploit a known vulnerability in IBM Tivoli Client 5.1 through 5.4. An attacker can send a large HTTP Header line in an attempt to overflow a buffer and execute arbitrary code.
Extended Description
IBM Tivoli Storage Manager client is prone to multiple vulnerabilities that can allow attackers to crash the client, execute arbitrary code in the context of the application, or gain unauthorized access to a client's data. These issues affect Tivoli Storage Manager client 5.1, V5.2, V5.3, and V5.4.
Affected Products
Ibm tivoli_storage_manager
Short Name
APP:IBM:TSM-CLIENT-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Buffer CVE-2007-4880 Client Manager Overflow Storage Tivoli bid:25743
Release Date
10/30/2007
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3729
Port
TCP/1581
False Positive
Unknown
Vendors
Ibm
CVSS Score
10.0