Stack-based Buffer Overflows in IBM Tivoli Storage Manager Remote Agent Service
CVE-2008-4828

Currently unrated

Key Information:

Vendor

IBM
Status
Tivoli Storage Manager Client
Tivoli Storage Manager Express
Vendor
CVE Published:
5 May 2009

What is CVE-2008-4828?

The IBM Tivoli Storage Manager (TSM) client suffers from multiple stack-based buffer overflows in dsmagent.exe within the Remote Agent Service. These vulnerabilities can be leveraged by remote attackers to execute arbitrary code. The overflow can be triggered through a malformed request packet that is improperly handled by a generic string processing function or by a crafted NodeName in the dicuGetIdentifyRequest packet. This issue is present across a range of versions, impacting both the Web and Java GUI interfaces.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/secunia_research/2008-55/
x_refsource_MISC
http://www-01.ibm.com/support/docview.wss?uid=swg21384389
x_refsource_CONFIRM
http://www.vupen.com/english/advisories/2009/1235
vdb-entryx_refsource_VUPEN

EPSS Score

77% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.