Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2006-5855
HistoryDec 06, 2006 - 7:28 p.m.

CVE-2006-5855

2006-12-0619:28:00
[email protected]
web.nvd.nist.gov
4

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.961

Percentile

99.5%

JSON

Multiple buffer overflows in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in (1) the language field at logon that begins with a 0x18 byte, (2) two unspecified parameters to the SmExecuteWdsfSession function, and (3) the contact field in an open registration message.

Affected configurations

Nvd
Node
ibmtivoli_storage_managerMatch5.2.7
OR
ibmtivoli_storage_managerMatch5.2.8
OR
ibmtivoli_storage_managerMatch5.3.0
OR
ibmtivoli_storage_managerMatch5.3.1
OR
ibmtivoli_storage_managerMatch5.3.2
OR
ibmtivoli_storage_managerMatch5.3.3
VendorProductVersionCPE
ibmtivoli_storage_manager5.2.7cpe:2.3:a:ibm:tivoli_storage_manager:5.2.7:*:*:*:*:*:*:*
ibmtivoli_storage_manager5.2.8cpe:2.3:a:ibm:tivoli_storage_manager:5.2.8:*:*:*:*:*:*:*
ibmtivoli_storage_manager5.3.0cpe:2.3:a:ibm:tivoli_storage_manager:5.3.0:*:*:*:*:*:*:*
ibmtivoli_storage_manager5.3.1cpe:2.3:a:ibm:tivoli_storage_manager:5.3.1:*:*:*:*:*:*:*
ibmtivoli_storage_manager5.3.2cpe:2.3:a:ibm:tivoli_storage_manager:5.3.2:*:*:*:*:*:*:*
ibmtivoli_storage_manager5.3.3cpe:2.3:a:ibm:tivoli_storage_manager:5.3.3:*:*:*:*:*:*:*

Related

checkpoint_advisories 1
cert 3
cvelist 2
nessus 1
cve 2
securityvulns 1
d2 1
nvd 1
checkpoint_advisories
checkpoint_advisories
IBM Tivoli Storage Manager Initial Sign-on Request Buffer Overflow (CVE-2006-5855)
2007-01-15 00:00:00
cert
cert
IBM Tivoli Storage Manager SmExecuteWdsfSession( ) function vulnerable to buffer overflow
2007-02-05 00:00:00
IBM Tivoli Storage Manager vulnerable to a buffer overflow
2007-02-05 00:00:00
IBM Tivoli Storage Manager Server vulnerable to buffer overflow
2007-02-05 00:00:00
cvelist
cvelist
CVE-2006-5855
2006-12-06 19:00:00
CVE-2006-6309
2006-12-06 20:00:00
nessus
nessus
IBM Tivoli Storage Manager Multiple Remote Overflows
2007-07-03 00:00:00
cve
cve
CVE-2006-5855
2006-12-06 19:28:00
CVE-2006-6309
2006-12-06 20:28:00
securityvulns
securityvulns
TSRT-06-14: IBM Tivoli Storage Manager Mutiple Buffer Overflow Vulnerabilities
2006-12-05 00:00:00
d2
d2
DSquare Exploit Pack: D2SEC_TSM
2006-12-06 19:28:00
nvd
nvd
CVE-2006-6309
2006-12-06 20:28:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.961

Percentile

99.5%

JSON
Related for NVD:CVE-2006-5855
checkpoint_advisories1cert3cvelist2nessus1cve2securityvulns1d21nvd1