Intrusion Prevention

IBM.Tivoli.Storage.Manager.Client.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in IBM Tivoli Storage Manager Client.
The vulnerability is caused by an error when the vulnerable software handles a malicious request. It allows a remote attacker to execute arbitrary code via sending a crafted request.

Affected Products

IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, and 5.4.0.0 through 5.4.1.96, and the TSM Express client 5.3.3.0 through 5.3.6.4

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version.
TSM 5.5 all platforms:
Update to version 5.5.2.
TSM 5.4 all platforms:
Update to version 5.4.2.7.
TSM 5.3:
Update to version 5.3.6.6
TSM 5.2:
Update to 5.2.5.4 (AIX), 5.2.5.4 (Solaris SPARC), 5.2.5.4 (HP PA-RISC), 5.2.5.4 (Windows x32), or 5.1.8.3 (Tru64 UNIX).
TSM Express:
Update to version 5.3.6.6.
TSM 5.5 SSL client update packages:
Update to 5.5.2.

CVE References

CVE-2008-4828