Lucene search

PRIOn knowledge basePRION:CVE-2008-0247

HistoryJan 12, 2008 - 2:46 a.m.

Heap overflow

2008-01-1202:46:00

PRIOn knowledge base

www.prio-n.com

8.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.52 Medium

EPSS

Percentile

97.5%

JSON

Heap-based buffer overflow in the Express Backup Server service (dsmsvc.exe) in IBM Tivoli Storage Manager (TSM) Express 5.3 before 5.3.7.3 allows remote attackers to execute arbitrary code via a packet with a large length value.

CPENameOperatorVersion
tivoli_storage_manager_expressle5.3

CPE	Name	Operator	Version
	tivoli_storage_manager_express	le	5.3

References

secunia.com/advisories/28440

www-1.ibm.com/support/docview.wss?uid=swg21291536

www.securityfocus.com/archive/1/486270/100/0/threaded

www.securityfocus.com/bid/27235

www.securitytracker.com/id?1019182

www.vupen.com/english/advisories/2008/0106

www.zerodayinitiative.com/advisories/ZDI-08-001.html

exchange.xforce.ibmcloud.com/vulnerabilities/39604

8.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.52 Medium

EPSS

Percentile

97.5%

JSON

Related for PRION:CVE-2008-0247