Lucene search

[email protected]CVE-2010-3755

HistoryOct 05, 2010 - 10:00 p.m.

CVE-2010-3755

2010-10-0522:00:06

CWE-399

[email protected]

web.nvd.nist.gov

cve-2010-3755

ibm tivoli storage manager

tsm

fastback

denial of service

null pointer dereference

daemon crash

remote attackers

6.4 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.008 Low

EPSS

Percentile

81.5%

JSON

The _DAS_ReadBlockReply function in FastBackServer.exe in the Server in IBM Tivoli Storage Manager (TSM) FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via data in a TCP packet. NOTE: this might overlap CVE-2010-3060.

Affected configurations

NVD

Node

ibmtivoli_storage_manager_fastbackMatch5.5.0

ibmtivoli_storage_manager_fastbackMatch5.5.1

ibmtivoli_storage_manager_fastbackMatch5.5.2

ibmtivoli_storage_manager_fastbackMatch5.5.2.0

ibmtivoli_storage_manager_fastbackMatch5.5.3.0

ibmtivoli_storage_manager_fastbackMatch5.5.4.0

ibmtivoli_storage_manager_fastbackMatch5.5.5.0

ibmtivoli_storage_manager_fastbackMatch5.5.6.0

ibmtivoli_storage_manager_fastbackMatch6.1.0.0

ibmtivoli_storage_manager_fastbackMatch6.1.0.1

CPENameOperatorVersion
ibm:tivoli_storage_manager_fastbackibm tivoli storage manager fastbackeq5.5.0
ibm:tivoli_storage_manager_fastbackibm tivoli storage manager fastbackeq5.5.1
ibm:tivoli_storage_manager_fastbackibm tivoli storage manager fastbackeq5.5.2
ibm:tivoli_storage_manager_fastbackibm tivoli storage manager fastbackeq5.5.2.0
ibm:tivoli_storage_manager_fastbackibm tivoli storage manager fastbackeq5.5.3.0
ibm:tivoli_storage_manager_fastbackibm tivoli storage manager fastbackeq5.5.4.0
ibm:tivoli_storage_manager_fastbackibm tivoli storage manager fastbackeq5.5.5.0
ibm:tivoli_storage_manager_fastbackibm tivoli storage manager fastbackeq5.5.6.0
ibm:tivoli_storage_manager_fastbackibm tivoli storage manager fastbackeq6.1.0.0
ibm:tivoli_storage_manager_fastbackibm tivoli storage manager fastbackeq6.1.0.1

CPE	Name	Operator	Version
ibm:tivoli_storage_manager_fastback	ibm tivoli storage manager fastback	eq	5.5.0
ibm:tivoli_storage_manager_fastback	ibm tivoli storage manager fastback	eq	5.5.1
ibm:tivoli_storage_manager_fastback	ibm tivoli storage manager fastback	eq	5.5.2
ibm:tivoli_storage_manager_fastback	ibm tivoli storage manager fastback	eq	5.5.2.0
ibm:tivoli_storage_manager_fastback	ibm tivoli storage manager fastback	eq	5.5.3.0
ibm:tivoli_storage_manager_fastback	ibm tivoli storage manager fastback	eq	5.5.4.0
ibm:tivoli_storage_manager_fastback	ibm tivoli storage manager fastback	eq	5.5.5.0
ibm:tivoli_storage_manager_fastback	ibm tivoli storage manager fastback	eq	5.5.6.0
ibm:tivoli_storage_manager_fastback	ibm tivoli storage manager fastback	eq	6.1.0.0
ibm:tivoli_storage_manager_fastback	ibm tivoli storage manager fastback	eq	6.1.0.1

References

www-01.ibm.com/support/docview.wss?uid=swg1IC69883

www.ibm.com/support/docview.wss?uid=swg21443820

www.securityfocus.com/archive/1/514063/100/0/threaded

zerodayinitiative.com/advisories/ZDI-10-187/

6.4 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.008 Low

EPSS

Percentile

81.5%

JSON

Related for CVE-2010-3755

cvelist3 nvd3 prion3 cve2