CVE-2015-1924 — Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM Tivoli Storage Manager Fastback

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources

Severity

7.8HIGHNVD

EPSS

1.4%

top 19.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Tivoli Storage Manager Fastback

Timeline

PublishedJun 30

Latest updateMay 17

Description

Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1925, CVE-2015-1929, CVE-2015-1930, CVE-2015-1948, CVE-2015-1953, CVE-2015-1954, CVE-2015-1962, CVE-2015-1963, CVE-2015-1964, and CVE-2015-1965.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

▶NVDibm/tivoli_storage_manager_fastback11 versions+10

🔴Vulnerability Details

GHSA

GHSA-9vgm-8x7f-4gp3: Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6↗2022-05-17

▶

CVEList

CVE-2015-1924: Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6↗2015-06-30

▶