CVE-2020-28198

7HIGH

Key Information:

Vendor: IBM
Status: Tivoli Storage Manager
Vendor: CVE Published:; 6 May 2021

Summary

The 'id' parameter of IBM Tivoli Storage Manager Version 5 Release 2 (Command Line Administrative Interface, dsmadmc.exe) is vulnerable to an exploitable stack buffer overflow. Note: the vulnerability can be exploited when it is used in "interactive" mode while, cause of a max number characters limitation, it cannot be exploited in batch or command line usage (e.g. dsmadmc.exe -id=username -password=pwd). NOTE: This vulnerability only affects products that are no longer supported by the maintainer

References

https://github.com/VoidSec/Exploit-Development/blob/maste...

x_refsource_MISC

https://voidsec.com/tivoli-madness/#IBM_Tivoli_Storage_Ma...

x_refsource_MISC

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 6, 2021
Vulnerability Reserved
Nov 4, 2020