CVSS: 9.1EPSS: 0%CPEs: 17EXPL: 0CVE-2009-1521
https://notcve.org/view.php?id=CVE-2009-1521
05 May 2009 — Unspecified vulnerability in the Java GUI in the IBM Tivoli Storage Manager (TSM) client 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.5, 5.4.0.0 through 5.4.2.6, and 5.5.0.0 through 5.5.1.17, and the TSM Express client 5.3.3.0 through 5.3.6.5, allows attackers to read or modify arbitrary files via unknown vectors. Vulnerabilidad inespecífica en Java GUI en el cliente IBM Tivoli Storage Manager (TSM) desde v5.2.0.0 hasta v5.2.5.3, desde v5.3.0.0 hasta v5.3.6.5, desde v5.4.0.0 hasta v5.4.2.6, y desde v5.5.0... • http://secunia.com/advisories/32604 •
CVSS: 10.0EPSS: 1%CPEs: 3EXPL: 0CVE-2009-1178
https://notcve.org/view.php?id=CVE-2009-1178
31 Mar 2009 — Unspecified vulnerability in the server in IBM Tivoli Storage Manager (TSM) 5.3.x before 5.3.2 and 6.x before 6.1 has unknown impact and attack vectors related to the "admin command line." Vulnerabilidad no especificada en el servidor en IBM Tivoli Storage Manager (TSM) 5.3.x versiones anteriores a v5.3.2 y 6.x versiones anteriores a v6.1 tiene un impacto desconocido y vectores de ataque relacionados a la "línea de comandos del administrador". • http://secunia.com/advisories/34498 •
CVSS: 7.2EPSS: 0%CPEs: 11EXPL: 0CVE-2003-1570
https://notcve.org/view.php?id=CVE-2003-1570
31 Mar 2009 — The server in IBM Tivoli Storage Manager (TSM) 5.1.x, 5.2.x before 5.2.1.2, and 6.x before 6.1 does not require credentials to observe the server console in some circumstances, which allows remote authenticated administrators to monitor server operations by establishing a console mode session, related to "session exposure." El servidor en IBM Tivoli Storage Manager (TSM) v5.1.x, v5.2.x anteriores a v5.2.1.2, y v6.x anteriores a v6.1, no requiere credenciales para ver la consola del servidor en algunas circu... • http://secunia.com/advisories/34498 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 1%CPEs: 18EXPL: 0CVE-2004-2762
https://notcve.org/view.php?id=CVE-2004-2762
31 Mar 2009 — The server in IBM Tivoli Storage Manager (TSM) 4.2.x on MVS, 5.1.9.x before 5.1.9.1, 5.1.x before 5.1.10, 5.2.2.x before 5.2.2.3, 5.2.x before 5.2.3, 5.3.x before 5.3.0, and 6.x before 6.1, when the HTTP communication method is enabled, allows remote attackers to cause a denial of service (daemon crash or hang) via unspecified HTTP traffic, as demonstrated by the IBM port scanner 1.3.1. El servidor en IBM Tivoli Storage Manager (TSM) 4.2.x en MVS, 5.1.9.x versiones anteriores a v5.1.9.1, 5.1.x versiones ant... • http://secunia.com/advisories/34498 •
CVSS: 10.0EPSS: 37%CPEs: 21EXPL: 0CVE-2008-4563
https://notcve.org/view.php?id=CVE-2008-4563
11 Mar 2009 — Heap-based buffer overflow in adsmdll.dll 5.3.7.7296, as used by the daemon (dsmsvc.exe) in the backup server in IBM Tivoli Storage Manager (TSM) Express 5.3.7.3 and earlier and TSM 5.2, 5.3 before 5.3.6.0, and 5.4.0.0 through 5.4.4.0, allows remote attackers to execute arbitrary code via a crafted length value. Un desbordamiento del búfer en la región heap de la memoria en la biblioteca adsmdll.dll versión 5.3.7.7296, como es usada por el demonio (dsmsvc.exe) en el servidor de respaldo en Tivoli Storage Ma... • http://archives.neohapsis.com/archives/fulldisclosure/2009-03/0192.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •