CVSS: 7.2EPSS: 0%CPEs: 11EXPL: 0CVE-2003-1570
https://notcve.org/view.php?id=CVE-2003-1570
31 Mar 2009 — The server in IBM Tivoli Storage Manager (TSM) 5.1.x, 5.2.x before 5.2.1.2, and 6.x before 6.1 does not require credentials to observe the server console in some circumstances, which allows remote authenticated administrators to monitor server operations by establishing a console mode session, related to "session exposure." El servidor en IBM Tivoli Storage Manager (TSM) v5.1.x, v5.2.x anteriores a v5.2.1.2, y v6.x anteriores a v6.1, no requiere credenciales para ver la consola del servidor en algunas circu... • http://secunia.com/advisories/34498 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 1%CPEs: 18EXPL: 0CVE-2004-2762
https://notcve.org/view.php?id=CVE-2004-2762
31 Mar 2009 — The server in IBM Tivoli Storage Manager (TSM) 4.2.x on MVS, 5.1.9.x before 5.1.9.1, 5.1.x before 5.1.10, 5.2.2.x before 5.2.2.3, 5.2.x before 5.2.3, 5.3.x before 5.3.0, and 6.x before 6.1, when the HTTP communication method is enabled, allows remote attackers to cause a denial of service (daemon crash or hang) via unspecified HTTP traffic, as demonstrated by the IBM port scanner 1.3.1. El servidor en IBM Tivoli Storage Manager (TSM) 4.2.x en MVS, 5.1.9.x versiones anteriores a v5.1.9.1, 5.1.x versiones ant... • http://secunia.com/advisories/34498 •
CVSS: 10.0EPSS: 37%CPEs: 21EXPL: 0CVE-2008-4563
https://notcve.org/view.php?id=CVE-2008-4563
11 Mar 2009 — Heap-based buffer overflow in adsmdll.dll 5.3.7.7296, as used by the daemon (dsmsvc.exe) in the backup server in IBM Tivoli Storage Manager (TSM) Express 5.3.7.3 and earlier and TSM 5.2, 5.3 before 5.3.6.0, and 5.4.0.0 through 5.4.4.0, allows remote attackers to execute arbitrary code via a crafted length value. Un desbordamiento del búfer en la región heap de la memoria en la biblioteca adsmdll.dll versión 5.3.7.7296, como es usada por el demonio (dsmsvc.exe) en el servidor de respaldo en Tivoli Storage Ma... • http://archives.neohapsis.com/archives/fulldisclosure/2009-03/0192.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.1EPSS: 0%CPEs: 5EXPL: 2CVE-2006-6309
https://notcve.org/view.php?id=CVE-2006-6309
06 Dec 2006 — Multiple array index errors in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to read arbitrary memory locations and cause a denial of service (crash) via a large index value in unspecified messages, a different issue than CVE-2006-5855. Múltiples errores de índice de array en IBM Tivoli Storage Manager (TSM) anterior a 5.2.9 y 5.3.x anterior a 5.3.4 permite a atacantes remotos leer localizaciones arbitrarias de memoria y provocar una denegación de servicio (caíd... • http://securityreason.com/securityalert/1979 •
CVSS: 10.0EPSS: 64%CPEs: 6EXPL: 0CVE-2006-5855
https://notcve.org/view.php?id=CVE-2006-5855
06 Dec 2006 — Multiple buffer overflows in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in (1) the language field at logon that begins with a 0x18 byte, (2) two unspecified parameters to the SmExecuteWdsfSession function, and (3) the contact field in an open registration message. Múltiples desbordamientos de búfer en IBM Tivoli Storage Manager (TSM) anterior a 5.2.9 y 5.3.x anterior a ... • http://secunia.com/advisories/23177 •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2003-1361
https://notcve.org/view.php?id=CVE-2003-1361
31 Dec 2003 — Unknown vulnerability in VERITAS Bare Metal Restore (BMR) of Tivoli Storage Manager (TSM) 3.1.0 through 3.2.1 allows remote attackers to gain root privileges on the BMR Main Server. • http://archives.neohapsis.com/archives/bugtraq/2003-02/0333.html •
CVSS: 9.8EPSS: 4%CPEs: 2EXPL: 0CVE-2002-0541
https://notcve.org/view.php?id=CVE-2002-0541
11 Jun 2002 — Buffer overflow in Tivoli Storage Manager TSM (1) Server or Storage Agents 3.1 through 5.1, and (2) the TSM Client Acceptor Service 4.2 and 5.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request to port 1580 or port 1581. Desbordamiento de búfer en Tivoli Storage Manager TSM : Server o Storage Agents 3.1 a la 5.1 TSM Client Acceptor Service 4.2 y 5.1 permite a atacantes remotos realizar un ataque de Denegación de Servicio (caida) y p... • http://archives.neohapsis.com/archives/bugtraq/2002-04/0126.html •