Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM1F4728F76B05AEDB1AB400EF690946D7272A437D08731C3310CF5058098FD2B5
HistoryJul 02, 2019 - 2:10 p.m.

Security Bulletin: Stack-based buffer overflow and elevation of privileges vulnerabilities in IBM Spectrum Protect Server and Storage Agents (CVE-2019-4087, CVE-2019-4088)

2019-07-0214:10:01
www.ibm.com
6

0.019 Low

EPSS

Percentile

88.5%

JSON

Summary

The IBM Spectrum Protect (formerly Tivoli Storage Manager) Server and Storage Agents are vulnerable to a stack-based buffer overflow and elevation of privileges.

Vulnerability Details

CVEID: CVE-2019-4087 DESCRIPTION: IBM Spectrum Protect Servers and Storage Agents are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by servers and storage agents in response to specifically crafted communication exchanges. By sending an overly long request, a remote attacker could overflow a buffer and execute arbitrary code on the system with instance id privileges or cause the server or storage agent to crash.
CVSS Base Score: 9.8
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/157510&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID: CVE-2019-4088 DESCRIPTION: IBM Spectrum Protect Servers and Storage Agents could allow a local attacker to gain elevated privileges on the system, caused by loading a specially crafted library loaded by the dsmqsan module. By setting up such a library, a local attacker could exploit this vulnerability to gain root privileges on the vulnerable system.
CVSS Base Score: 7.4
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/157511&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)

Affected Products and Versions

This vulnerability affects the following IBM Spectrum Protect (formerly Tivoli Storage Manager) Server levels:

  • 8.1.0.0 through 8.1.7.xxx
  • 7.1.0.0 through 7.1.9.200

Remediation/Fixes

IBM Spectrum Protect
Server Release | First Fixing
VRM Level | Platform | Link to Fix
—|—|—|—
8.1 | 8.1.8 | AIX
Linux
Windows |

<https://www.ibm.com/support/docview.wss?uid=ibm10888463&gt;

7.1

|

7.1.9.300

| AIX
HP-UX
Linux
Solaris
Windows |

<ftp://public.dhe.ibm.com/storage/tivoli-storage-management/patches/server/&gt;

Workarounds and Mitigations

None.

Related

nessus 1
prion 2
cve 2
cvelist 2
nvd 2
threatpost 1
nessus
nessus
IBM Spectrum Protect Server and Storage Agent RCE
2020-03-13 00:00:00
prion
prion
Stack overflow
2019-07-02 15:15:00
Code injection
2019-07-02 15:15:00
cve
cve
CVE-2019-4087
2019-07-02 15:15:11
CVE-2019-4088
2019-07-02 15:15:11
cvelist
cvelist
CVE-2019-4087
2019-07-01 00:00:00
CVE-2019-4088
2019-07-01 00:00:00
nvd
nvd
CVE-2019-4087
2019-07-02 15:15:11
CVE-2019-4088
2019-07-02 15:15:11
threatpost
threatpost
IBM Patches Critical, High-Severity Flaws in Spectrum Protect
2019-07-02 20:28:52

0.019 Low

EPSS

Percentile

88.5%

JSON
Related for 1F4728F76B05AEDB1AB400EF690946D7272A437D08731C3310CF5058098FD2B5
nessus1prion2cve2cvelist2nvd2threatpost1