|
|
CVE Reference: CVE-2008-4828 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-4828 |
|
|
Description: Multiple stack-based buffer overflows in dsmagent.exe in the Remote Agent Service in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, and 5.4.0.0 through 5.4.1.96, and the TSM Express client 5.3.3.0 through 5.3.6.4, allow remote attackers to execute arbitrary code via (1) a request packet that is not properly parsed by an unspecified "generic string handling function" or (2) a crafted NodeName in a dicuGetIdentifyRequest request packet, related to the (a) Web GUI and (b) Java GUI. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/50327 SAID Secunia Advisory: SA32604 OSVDB 54232 54231 MISC http://secunia.com/secunia_research/2008-55/ CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21384389 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/503182/100/0/threaded AIXAPAR http://www-1.ibm.com/support/docview.wss?uid=swg1IC59513 |
|
| Return to the previous page. |
