CVE-2016-0216 — Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM Tivoli Storage Manager Fastback

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer6 documents5 sources

Severity

9.8CRITICALNVD

EPSS

3.2%

top 12.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Tivoli Storage Manager Fastback

Timeline

PublishedFeb 29

Latest updateMay 17

Description

Stack-based buffer overflow in IBM Tivoli Storage Manager FastBack 5.5 and 6.1.x through 6.1.11.1 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2016-0212 and CVE-2016-0213.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

▶NVDibm/tivoli_storage_manager_fastback33 versions+32

🔴Vulnerability Details

GHSA

GHSA-jxmv-8fwr-5mqh: Stack-based buffer overflow in IBM Tivoli Storage Manager FastBack 5↗2022-05-17

▶

CVEList

CVE-2016-0216: Stack-based buffer overflow in IBM Tivoli Storage Manager FastBack 5↗2016-02-29

▶

🕵️Threat Intelligence

Talos

Vulnerability Spotlight: ImageMagick Convert Tiff Out of Bounds Write↗2016-12-06

▶

Talos

Vulnerability Spotlight: ImageMagick Convert Tiff Out of Bounds Write↗2016-12-06

▶

💬Community

Bugzilla

CVE-2016-8707 ImageMagick: OOB write in convert utility when deflating TIFF files↗2016-12-23

▶