CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
90.9%
Buffer overflow in Tivoli Storage Manager TSM (1) Server or Storage Agents 3.1 through 5.1, and (2) the TSM Client Acceptor Service 4.2 and 5.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request to port 1580 or port 1581.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | tivoli_storage_manager | 4.2 | cpe:2.3:a:ibm:tivoli_storage_manager:4.2:*:*:*:*:*:*:* |
ibm | tivoli_storage_manager | 4.2.1 | cpe:2.3:a:ibm:tivoli_storage_manager:4.2.1:*:*:*:*:*:*:* |