Ibm Tivoli Storage Manager Express vulnerabilities

5 known vulnerabilities affecting ibm/tivoli_storage_manager_express.

Total CVEs
5
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH1

Vulnerabilities

Page 1 of 1
CVE-2009-1520CRITICALCVSS 10.0v5.3v5.3.3.0+1 more2009-05-05
CVE-2009-1520 [CRITICAL] CWE-119 CVE-2009-1520: Buffer overflow in the Web GUI in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8. Buffer overflow in the Web GUI in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, 5.4.0.0 through 5.4.2.6, and 5.5.0.0 through 5.5.1.17 allows attackers to cause a denial of service (application crash) or execute arbitrary code via unspecified vectors.
nvd
CVE-2008-4828CRITICALCVSS 10.0PoCv5.3v5.3.3.0+1 more2009-05-05
CVE-2008-4828 [CRITICAL] CWE-119 CVE-2008-4828: Multiple stack-based buffer overflows in dsmagent.exe in the Remote Agent Service in the IBM Tivoli Multiple stack-based buffer overflows in dsmagent.exe in the Remote Agent Service in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, and 5.4.0.0 through 5.4.1.96, and the TSM Express client 5.3.3.0 through 5.3.6.4, allow remote attackers to execute arbitrary code via (1) a request
nvd
CVE-2009-1521HIGHCVSS 7.5v5.32009-05-05
CVE-2009-1521 [HIGH] CVE-2009-1521: Unspecified vulnerability in the Java GUI in the IBM Tivoli Storage Manager (TSM) client 5.2.0.0 thr Unspecified vulnerability in the Java GUI in the IBM Tivoli Storage Manager (TSM) client 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.5, 5.4.0.0 through 5.4.2.6, and 5.5.0.0 through 5.5.1.17, and the TSM Express client 5.3.3.0 through 5.3.6.5, allows attackers to read or modify arbitrary files via unknown vectors.
nvd
CVE-2008-4563CRITICALCVSS 10.0v5.3v5.3.3.0+2 more2009-03-11
CVE-2008-4563 [CRITICAL] CWE-119 CVE-2008-4563: Heap-based buffer overflow in adsmdll.dll 5.3.7.7296, as used by the daemon (dsmsvc.exe) in the back Heap-based buffer overflow in adsmdll.dll 5.3.7.7296, as used by the daemon (dsmsvc.exe) in the backup server in IBM Tivoli Storage Manager (TSM) Express 5.3.7.3 and earlier and TSM 5.2, 5.3 before 5.3.6.0, and 5.4.0.0 through 5.4.4.0, allows remote attackers to execute arbitrary code via a crafted length value.
nvd
CVE-2008-0247CRITICALCVSS 10.0≤ 5.32008-01-12
CVE-2008-0247 [CRITICAL] CWE-119 CVE-2008-0247: Heap-based buffer overflow in the Express Backup Server service (dsmsvc.exe) in IBM Tivoli Storage M Heap-based buffer overflow in the Express Backup Server service (dsmsvc.exe) in IBM Tivoli Storage Manager (TSM) Express 5.3 before 5.3.7.3 allows remote attackers to execute arbitrary code via a packet with a large length value.
nvd