Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

IBM Tivoli Storage Manager CAD Service Buffer Overflow

🗓️ 05 Nov 2009 00:00:00Reported by RootType 
seebug
 seebug🔗 www.seebug.org👁 35 Views

IBM Tivoli Storage Manager CAD Service Buffer Overflow. Input validation error in CAD service causes stack-based buffer overflow, allowing execution of arbitrary code. Update to a fixed version

Related
Code
ReporterTitlePublishedViews
Family
CVE		CVE-2008-4826
16 Nov 200919:00
cve
Cvelist		CVE-2008-4826
16 Nov 200919:00
cvelist
NVD		CVE-2008-4826
16 Nov 200919:30
nvd
Prion		Design/Logic Flaw
16 Nov 200919:30
prion
securityvulns		Secunia Research: IBM Tivoli Storage Manager CAD Service Buffer Overflow
5 Nov 200900:00
securityvulns

                                                ====================================================================== 

                     Secunia Research 04/11/2009

      - IBM Tivoli Storage Manager CAD Service Buffer Overflow -

====================================================================== 
Table of Contents

Affected Software....................................................1
Severity.............................................................2
Vendor's Description of Software.....................................3
Description of Vulnerability.........................................4
Solution.............................................................5
Time Table...........................................................6
Credits..............................................................7
References...........................................................8
About Secunia........................................................9
Verification........................................................10

====================================================================== 
1) Affected Software 

* IBM Tivoli Storage Manager Express Client 5.3.6.2

NOTE: Other versions may also be affected.

====================================================================== 
2) Severity 

Rating: Moderately critical
Impact: System access
Where:  Local network

====================================================================== 
3) Vendor's Description of Software 

"Designed to provide centralized, automated data protection that can
help reduce the risks associated with data loss".

Product Link:
http://www-01.ibm.com/software/tivoli/products/storage-mgr/

====================================================================== 
4) Description of Vulnerability

Secunia Research has discovered a vulnerability in IBM Tivoli Storage
Manager Client, which can be exploited by malicious people to
compromise a vulnerable system.

The vulnerability is caused by an input validation error in the CAD 
service. This can be exploited to cause a stack-based buffer overflow
by sending a specially crafted packet via TCP.

Successful exploitation allows execution of arbitrary code.

====================================================================== 
5) Solution 

Update to a fixed version.

====================================================================== 
6) Time Table 

07/11/2008 - Vendor notified.
14/11/2008 - Vendor notified (2nd attempt).
15/11/2008 - Vendor response.
04/11/2009 - Public disclosure.

====================================================================== 
7) Credits 

Discovered by Dyon Balding, Secunia Research.

====================================================================== 
8) References

The Common Vulnerabilities and Exposures (CVE) project has assigned 
CVE-2008-4826 for the vulnerability.

====================================================================== 
9) About Secunia

Secunia offers vulnerability management solutions to corporate
customers with verified and reliable vulnerability intelligence
relevant to their specific system configuration:

http://secunia.com/advisories/business_solutions/

Secunia also provides a publicly accessible and comprehensive advisory
database as a service to the security community and private 
individuals, who are interested in or concerned about IT-security.

http://secunia.com/advisories/

Secunia believes that it is important to support the community and to
do active vulnerability research in order to aid improving the 
security and reliability of software in general:

http://secunia.com/secunia_research/

Secunia regularly hires new skilled team members. Check the URL below
to see currently vacant positions:

http://secunia.com/corporate/jobs/

Secunia offers a FREE mailing list called Secunia Security Advisories:

http://secunia.com/advisories/mailing_lists/

====================================================================== 
10) Verification 

Please verify this advisory by visiting the Secunia website:
http://secunia.com/secunia_research/2008-51/

Complete list of vulnerability reports published by Secunia Research:
http://secunia.com/secunia_research/

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
05 Nov 2009 00:00Current
6.6Medium risk
Vulners AI Score6.6
ibm tivoli storage managerbuffer overflowinput validationstack-based buffer overflowarbitrary code executionvulnerabilitysecunia researchcve-2008-4826
35