317 matches found
CVE-2015-0119
FastBack Mount in IBM Tivoli Storage Manager FastBack 6.1.x before 6.1.11.1 allows remote attackers to execute arbitrary code by connecting to the Mount port...
IBM Tivoli Storage Manager FastBack Mount Service Code Execution
Added: 10/18/2010 CVE: CVE-2010-3058 BID: 42549 OSVDB: 67292 Background IBM Tivoli Storage Manager TSM provides centralized management for automated backup and restoration operations. TSM includes FastBack, which provides a client/server backup solution for the MS Windows environment. FastBack...
IBM Tivoli Storage Manager FastBack Mount Service Code Execution
Added: 10/18/2010 CVE: CVE-2010-3058 BID: 42549 OSVDB: 67292 Background IBM Tivoli Storage Manager TSM provides centralized management for automated backup and restoration operations. TSM includes FastBack, which provides a client/server backup solution for the MS Windows environment. FastBack...
IBM Tivoli Storage Manager FastBack Mount Service Code Execution
Added: 10/18/2010 CVE: CVE-2010-3058 BID: 42549 OSVDB: 67292 Background IBM Tivoli Storage Manager TSM provides centralized management for automated backup and restoration operations. TSM includes FastBack, which provides a client/server backup solution for the MS Windows environment. FastBack...
Tivoli Storage Manager FastBack 0xfafbfcfd Packet Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Tivoli Storage Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within FastBackServer.exe which listens by default on TCP port 1320. When handling a...
IBM Tivoli Storage Manager FastBack Mount Service Code Execution (CVE-2010-3058)
The IBM Tivoli Storage Manager TSM is a product used for storing backups and archiving data. A remote code execution vulnerability has been reported in IBM Tivoli Storage Manager FastBack. The vulnerability is due to an arbitrary memory accessing in Fastback Mount Service FastBackMount.exe which...
CVE-2010-3759
FastBackMount.exe in the Mount service in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 writes a certain value to a memory location specified by a UDP packet field, which allows remote attackers to execute arbitrary code via multiple requests. NOTE:...
CVE-2010-3760
FastBackMount.exe in the Mount service in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 does not properly handle a certain failure to allocate memory, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash...
CVE-2010-3758
Multiple stack-based buffer overflows in FastBackServer.exe in the Server in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 allow remote attackers to execute arbitrary code via vectors involving the 1 AGISendToLog aka SendToLog function; the 2 group, 3...
CVE-2010-3755
The DASReadBlockReply function in FastBackServer.exe in the Server in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via data in a TCP packet. NOTE: this mig...
CVE-2010-3754
The FXCLIOraBRExecCommand function in FastBackServer.exe in the Server in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 uses values of packet fields to determine the content and length of data copied to memory, which allows remote attackers to execute...
CVE-2010-3761
Unspecified vulnerability in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-700. NOTE: this might overlap CVE-2010-3058 or CVE-2010-3059...
CVE-2010-3757
Format string vulnerability in the Eventlog function in FastBackServer.exe in the Server in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 allows remote attackers to execute arbitrary code via format string specifiers located after a | pipe character i...
Format string
Format string vulnerability in the Eventlog function in FastBackServer.exe in the Server in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 allows remote attackers to execute arbitrary code via format string specifiers located after a | pipe character i...
Stack overflow
Multiple stack-based buffer overflows in FastBackServer.exe in the Server in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 allow remote attackers to execute arbitrary code via vectors involving the 1 AGISendToLog aka SendToLog function; the 2 group, 3...
Null pointer dereference
FastBackMount.exe in the Mount service in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 does not properly handle a certain failure to allocate memory, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash...
Design/Logic Flaw
The FXCLIOraBRExecCommand function in FastBackServer.exe in the Server in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 uses values of packet fields to determine the content and length of data copied to memory, which allows remote attackers to execute...
Code injection
Unspecified vulnerability in IBM Tivoli Storage Manager TSM FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-700. NOTE: this might overlap CVE-2010-3058 or CVE-2010-3059...
CVE-2010-3755
The vulnerability CVE-2010-3755 affects IBM Tivoli Storage Manager (TSM) FastBack Server. FastBack 5.5.0.0–5.5.6.0 and 6.1.0.0–6.1.0.1 expose the _DAS_ReadBlockReply function in FastBackServer.exe, which can be reached over TCP data and leads to a NULL pointer dereference and daemon crash (DoS). ...
CVE-2010-3756
Affected software: IBM Tivoli Storage Manager (TSM) FastBack 5.5.0.0–5.5.6.0 and 6.1.0.0–6.1.0.1, Server component (FastBackServer.exe). Vulnerability details: The function _CalcHashValueWithLength in FastBackServer.exe does not properly validate an unspecified length value. This may allow a remo...