CVE-2009-0869

Buffer overflow in the client in IBM Tivoli Storage Manager (TSM) HSM 5.3.2.0 through 5.3.5.0, 5.4.0.0 through 5.4.2.5, and 5.5.0.0 through 5.5.1.4 on Windows allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/34189	Vendor Advisory
http://securitytracker.com/id?1021820
http://www-01.ibm.com/support/docview.wss?uid=swg21329223	Patch Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1IC59481
http://www.securityfocus.com/bid/34034	Patch
http://www.vupen.com/english/advisories/2009/0638	Vendor Advisory
http://secunia.com/advisories/34189	Vendor Advisory
http://securitytracker.com/id?1021820
http://www-01.ibm.com/support/docview.wss?uid=swg21329223	Patch Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1IC59481
http://www.securityfocus.com/bid/34034	Patch
http://www.vupen.com/english/advisories/2009/0638	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:ibm:tivoli_storage_manager_hsm:5.3.2.0:::::::*
	cpe:2.3:a:ibm:tivoli_storage_manager_hsm:5.3.5.0:::::::*
	cpe:2.3:a:ibm:tivoli_storage_manager_hsm:5.4.0.0:::::::*
	cpe:2.3:a:ibm:tivoli_storage_manager_hsm:5.4.2.5:::::::*
	cpe:2.3:a:ibm:tivoli_storage_manager_hsm:5.5.0.0:::::::*
	cpe:2.3:a:ibm:tivoli_storage_manager_hsm:5.5.1.4:::::::*

cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:01

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/34189 - Vendor Advisory~~	() http://secunia.com/advisories/34189 - Vendor Advisory
References	~~() http://securitytracker.com/id?1021820 -~~	() http://securitytracker.com/id?1021820 -
References	~~() http://www-01.ibm.com/support/docview.wss?uid=swg21329223 - Patch, Vendor Advisory~~	() http://www-01.ibm.com/support/docview.wss?uid=swg21329223 - Patch, Vendor Advisory
References	~~() http://www-1.ibm.com/support/docview.wss?uid=swg1IC59481 -~~	() http://www-1.ibm.com/support/docview.wss?uid=swg1IC59481 -
References	~~() http://www.securityfocus.com/bid/34034 - Patch~~	() http://www.securityfocus.com/bid/34034 - Patch
References	~~() http://www.vupen.com/english/advisories/2009/0638 - Vendor Advisory~~	() http://www.vupen.com/english/advisories/2009/0638 - Vendor Advisory

Information

Published : 2009-03-10 20:30

Updated : 2025-04-09 00:30

NVD link : CVE-2009-0869

Mitre link : CVE-2009-0869

CVE.ORG link : CVE-2009-0869

JSON object : View

Products Affected

ibm

tivoli_storage_manager_hsm

microsoft

windows

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

10.0 /10