CVE-2008-0247 – IBM Tivoli Storage Manager Express Backup Server Heap Overflow Vulnerability

https://notcve.org/view.php?id=CVE-2008-0247

Heap-based buffer overflow in the Express Backup Server service (dsmsvc.exe) in IBM Tivoli Storage Manager (TSM) Express 5.3 before 5.3.7.3 allows remote attackers to execute arbitrary code via a packet with a large length value. Un desbordamiento de búfer en la región heap de la memoria en el servicio Express Backup Server (archivo dsmsvc.exe) en IBM Tivoli Storage Manager (TSM) Express versiones 5.3 anteriores a 5.3.7.3, permite a atacantes remotos ejecutar código arbitrario por medio de un paquete con un valor de longitud largo. This vulnerability allows attackers to execute arbitrary code on vulnerable installations of IBM Tivoli Storage Manager Express. Authentication is not required to exploit this vulnerability. The specific flaw resides in the TSM Express Backup Server service, dsmsvc.exe, which listens by default on TCP port 1500. The process trusts a user-supplied length value. • http://secunia.com/advisories/28440 http://www-1.ibm.com/support/docview.wss?uid=swg21291536 http://www.securityfocus.com/archive/1/486270/100/0/threaded http://www.securityfocus.com/bid/27235 http://www.securitytracker.com/id?1019182 http://www.vupen.com/english/advisories/2008/0106 http://www.zerodayinitiative.com/advisories/ZDI-08-001.html https://exchange.xforce.ibmcloud.com/vulnerabilities/39604 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •