Lucene search

MitreCVE-2010-3058

HistoryAug 20, 2010 - 6:00 p.m.

CVE-2010-3058

2010-08-2018:00:02

CWE-399

mitre

web.nvd.nist.gov

ibm

tivoli

storage manager

fastback

vulnerability

cve-2010-3058

nvd

udp

remote attackers

memory overwrite

denial of service

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

Low

EPSS

0.062

Percentile

93.7%

JSON

The Mount service in IBM Tivoli Storage Manager (TSM) FastBack 5.x.x before 5.5.7, and 6.1.0.0, establishes an open UDP port, which might allow remote attackers to overwrite memory locations and execute arbitrary code, or cause a denial of service (application hang), via unspecified vectors.

Affected configurations

Nvd

Node

ibmtivoli_storage_manager_fastbackMatch5.5.0

ibmtivoli_storage_manager_fastbackMatch5.5.1

ibmtivoli_storage_manager_fastbackMatch5.5.2

ibmtivoli_storage_manager_fastbackMatch5.5.2.0

ibmtivoli_storage_manager_fastbackMatch5.5.3.0

ibmtivoli_storage_manager_fastbackMatch5.5.4.0

ibmtivoli_storage_manager_fastbackMatch5.5.5.0

ibmtivoli_storage_manager_fastbackMatch5.5.6.0

ibmtivoli_storage_manager_fastbackMatch6.1.0.0

VendorProductVersionCPE
ibmtivoli_storage_manager_fastback5.5.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback5.5.1cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.1:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback5.5.2cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.2:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback5.5.2.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.2.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback5.5.3.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.3.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback5.5.4.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.4.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback5.5.5.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.5.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback5.5.6.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.6.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager_fastback6.1.0.0cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.0.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	tivoli_storage_manager_fastback	5.5.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.0:::::::*
ibm	tivoli_storage_manager_fastback	5.5.1	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.1:::::::*
ibm	tivoli_storage_manager_fastback	5.5.2	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.2:::::::*
ibm	tivoli_storage_manager_fastback	5.5.2.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.2.0:::::::*
ibm	tivoli_storage_manager_fastback	5.5.3.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.3.0:::::::*
ibm	tivoli_storage_manager_fastback	5.5.4.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.4.0:::::::*
ibm	tivoli_storage_manager_fastback	5.5.5.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.5.0:::::::*
ibm	tivoli_storage_manager_fastback	5.5.6.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:5.5.6.0:::::::*
ibm	tivoli_storage_manager_fastback	6.1.0.0	cpe:2.3:a:ibm:tivoli_storage_manager_fastback:6.1.0.0:::::::*

References

secunia.com/advisories/41044

www-01.ibm.com/support/docview.wss?uid=swg1IC69883

www-01.ibm.com/support/docview.wss?uid=swg21443820

www.securityfocus.com/bid/42549

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

Low

EPSS

0.062

Percentile

93.7%

JSON

Related for CVE-2010-3058