CVSS: 9.1EPSS: 0%CPEs: 65EXPL: 0CVE-2013-0472
https://notcve.org/view.php?id=CVE-2013-0472
21 Feb 2013 — The Web GUI in the client in IBM Tivoli Storage Manager (TSM) 6.3 before 6.3.1.0 and 6.4 before 6.4.0.1 allows man-in-the-middle attackers to obtain unspecified client access, and consequently obtain unspecified server access, via unknown vectors. La interfaz gráfica de usuario Web en el cliente de IBM Tivoli Storage Manager (TSM) v6,3 antes de v6.3.1.0 y v6,4 antes de v6.4.0.1 permite ataques de man-in-the-middle para obtener acceso de clientes no especificados, y por lo tanto obtener acceso al servidor si... • http://www-01.ibm.com/support/docview.wss?uid=swg1IC87210 •
CVSS: 9.1EPSS: 0%CPEs: 6EXPL: 0CVE-2012-5954
https://notcve.org/view.php?id=CVE-2012-5954
21 Dec 2012 — Unspecified vulnerability in IBM Tivoli Storage Manager for Space Management (aka TSM HSM) before 6.2.5.0 and 6.3.x before 6.3.1.0 allows remote attackers to read or modify HSM-managed file system objects via unknown vectors. Una vulnerabilidad no especificada en IBM Tivoli Storage Manager for Space Management (también conocido como TSM HSM) antes de v6.2.5.0 y v6.3.x antes de v6.3.1.0 permite a atacantes remotos leer o modificar objetos del sistema de ficheros gestionados por HSM a través de vectores desco... • http://www-01.ibm.com/support/docview.wss?uid=swg1IC86724 •
CVSS: 7.8EPSS: 0%CPEs: 34EXPL: 0CVE-2011-1222
https://notcve.org/view.php?id=CVE-2011-1222
17 Jul 2011 — Buffer overflow in the Journal Based Backup (JBB) feature in the backup-archive client in IBM Tivoli Storage Manager (TSM) before 5.4.3.4, 5.5.x before 5.5.3, 6.x before 6.1.4, and 6.2.x before 6.2.2 on Windows and AIX allows local users to gain privileges via unspecified vectors. Desbordamiento de búfer en característica de copia de seguridad diaria(JBB o Journal Based Backup) en el archivo de copia de seguridad de IBM Tivoli Storage Manager (TSM), antes de v5.4.3.4, en v5.5.x antes de v5.5.3, en v6.x ante... • http://secunia.com/advisories/45098 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 33EXPL: 0CVE-2011-1223
https://notcve.org/view.php?id=CVE-2011-1223
17 Jul 2011 — Buffer overflow in the Alternate Data Stream (aka ADS or named stream) functionality in the backup-archive client in IBM Tivoli Storage Manager (TSM) before 5.4.3.4, 5.5.x before 5.5.3, 6.x before 6.1.4, and 6.2.x before 6.2.2 on Windows allows local users to gain privileges via unspecified vectors. Desbordamiento de búfer en la funcionalidad de secuencia de datos alternativa (ADS o Alternate Data Stream)en el cliente del archivo de copia de seguridad en IBM Tivoli Storage Manager (TSM), antes de v5.4.3.4, ... • http://secunia.com/advisories/45098 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 1%CPEs: 5EXPL: 3CVE-2010-4604 – IBM Tivoli Storage Manager (TSM) - Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2010-4604
29 Dec 2010 — Stack-based buffer overflow in the GeneratePassword function in dsmtca (aka the Trusted Communications Agent or TCA) in the backup-archive client in IBM Tivoli Storage Manager (TSM) 5.3.x before 5.3.6.10, 5.4.x before 5.4.3.4, 5.5.x before 5.5.2.10, and 6.1.x before 6.1.3.1 on Unix and Linux allows local users to gain privileges by specifying a long LANG environment variable, and then sending a request over a pipe. Desbordamiento de búfer basado en pila en la función GeneratePassword en dsmtca (también cono... • https://www.exploit-db.com/exploits/15745 • CWE-787: Out-of-bounds Write •
CVSS: 6.6EPSS: 0%CPEs: 33EXPL: 0CVE-2010-4605
https://notcve.org/view.php?id=CVE-2010-4605
29 Dec 2010 — Unspecified vulnerability in the backup-archive client in IBM Tivoli Storage Manager (TSM) 5.3.x before 5.3.6.10, 5.4.x before 5.4.3.4, 5.5.x before 5.5.3, 6.1.x before 6.1.4, and 6.2.x before 6.2.2 on Unix and Linux allows local users to overwrite arbitrary files via unknown vectors. Vulnerabilidad no especificada en el cliente de copia de seguridad de archivos en IBM Tivoli Storage Manager (TSM) v5.3.x anteriores a v5.3.6.10, v5.4.3.4 anterior a v5.4.x, v5.5.x anteriores a v5.5.3, v6.1.x anteriores a v6.1... • http://secunia.com/advisories/42639 •
CVSS: 9.8EPSS: 4%CPEs: 5EXPL: 0CVE-2010-4606
https://notcve.org/view.php?id=CVE-2010-4606
29 Dec 2010 — Unspecified vulnerability in the Space Management client in the Hierarchical Storage Management (HSM) component in IBM Tivoli Storage Manager (TSM) 5.4.x before 5.4.3.4, 5.5.x before 5.5.3, 6.1.x before 6.1.4, and 6.2.x before 6.2.2 on Unix and Linux allows remote attackers to execute arbitrary commands via unknown vectors, related to a "script execution vulnerability." Vulnerabilidad sin especificar en el cliente Space Management en el Hierarchical Storage Management (HSM) component en IBM Tivoli Storage M... • http://secunia.com/advisories/42639 •
CVSS: 10.0EPSS: 7%CPEs: 10EXPL: 0CVE-2010-3754
https://notcve.org/view.php?id=CVE-2010-3754
05 Oct 2010 — The FXCLI_OraBR_Exec_Command function in FastBackServer.exe in the Server in IBM Tivoli Storage Manager (TSM) FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 uses values of packet fields to determine the content and length of data copied to memory, which allows remote attackers to execute arbitrary code via a crafted packet. NOTE: this might overlap CVE-2010-3059. La función FXCLI_OraBR_Exec_Command en FastBackServer.exe en el servidor de IBM Tivoli Storage Manager (TSM) Fastback v5.5.0.0 a v5.... • http://www-01.ibm.com/support/docview.wss?uid=swg1IC69883 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.5EPSS: 0%CPEs: 10EXPL: 0CVE-2010-3755
https://notcve.org/view.php?id=CVE-2010-3755
05 Oct 2010 — The _DAS_ReadBlockReply function in FastBackServer.exe in the Server in IBM Tivoli Storage Manager (TSM) FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via data in a TCP packet. NOTE: this might overlap CVE-2010-3060. La función _DAS_ReadBlockReply en FastBackServer.exe en el servidor de IBM Tivoli Storage Manager (TSM) Fastback v5.5.0.0 a v5.5.6.0 y v6.1.0.0 a v6.1.0.1 permite a atacantes remotos ... • http://www-01.ibm.com/support/docview.wss?uid=swg1IC69883 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 10EXPL: 0CVE-2010-3756
https://notcve.org/view.php?id=CVE-2010-3756
05 Oct 2010 — The _CalcHashValueWithLength function in FastBackServer.exe in the Server in IBM Tivoli Storage Manager (TSM) FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 does not properly validate an unspecified length value, which allows remote attackers to cause a denial of service (daemon crash) by sending data over TCP. NOTE: this might overlap CVE-2010-3060. La función _CalcHashValueWithLength en FastBackServer.exe en el servidor de IBM Tivoli Storage Manager (TSM) Fastback v5.5.0.0 a v5.5.6.0 y v6.1.... • http://www-01.ibm.com/support/docview.wss?uid=swg1IC69883 • CWE-20: Improper Input Validation •