APP: IBM Tivoli Storage Manager NodeName Buffer Overflow
This signature detects attempts to exploit a known vulnerability in IBM Tivoli Storage Manager Client. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server, usually SYSTEM.
Extended Description
IBM Tivoli Storage Manager is prone to multiple vulnerabilities: - Multiple buffer-overflow issues - Multiple unauthorized-access issues Attackers can exploit these issues to cause a denial-of-service condition, to execute arbitrary code, and to read, copy, edit, or delete files on a victim's computer. Other attacks may also be possible.
Affected Products
Ibm tivoli_storage_manager
References
BugTraq: 34803
CVE: CVE-2008-4828
URL: http://www-01.ibm.com/support/docview.wss?uid=swg21384389
Short Name
APP:IBM:TSM-NODE-NAME-OF
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Buffer CVE-2008-4828 IBM Manager NodeName Overflow Storage Tivoli bid:34803
Release Date
05/29/2009
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3729
Port
TCP/1582-1584
False Positive
Unknown
Vendors
Ibm
CVSS Score
10.0