CVE-2007-4880

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Storage Manager Client
Vendor: CVE Published:; 28 September 2007

Summary

Buffer overflow in the Client Acceptor Daemon (CAD), dsmcad.exe, in certain IBM Tivoli Storage Manager (TSM) clients 5.1 before 5.1.8.1, 5.2 before 5.2.5.2, 5.3 before 5.3.5.3, and 5.4 before 5.4.1.2 allows remote attackers to execute arbitrary code via crafted HTTP headers, aka IC52905.

References

http://www.securityfocus.com/bid/25743

vdb-entryx_refsource_BID

http://www-1.ibm.com/support/docview.wss?uid=swg21268775

x_refsource_CONFIRM

http://www-1.ibm.com/support/search.wss?rs=0&q=IC52905&ap...

vendor-advisoryx_refsource_AIXAPAR

EPSS Score

95% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 28, 2007
Vulnerability Reserved
Sep 13, 2007