CVE-2014-6184

2015-02-2202:59:00

CWE-787

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

Percentile

5.1%

JSON

Stack-based buffer overflow in dsmtca in the client in IBM Tivoli Storage Manager (TSM) 5.4 through 5.4.3.6, 5.5 through 5.5.4.3, 6.1 through 6.1.5.6, 6.2 before 6.2.5.4, and 6.3 before 6.3.2.3 on UNIX, Linux, and OS X allows local users to gain privileges via unspecified vectors.

Affected configurations

Nvd

Node

ibmtivoli_storage_managerRange5.4.0–5.4.3.6

ibmtivoli_storage_managerRange5.5.0–5.5.4.3

ibmtivoli_storage_managerRange6.1.0–6.1.5.6

ibmtivoli_storage_managerRange6.2.0–6.2.5.3

ibmtivoli_storage_managerRange6.3.0–6.3.2.2

AND

applemacosMatch-

linuxlinux_kernelMatch-

opengroupunixMatch-

VendorProductVersionCPE
ibmtivoli_storage_manager*cpe:2.3:a:ibm:tivoli_storage_manager:*:*:*:*:*:*:*:*
applemacos-cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
opengroupunix-cpe:2.3:o:opengroup:unix:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	tivoli_storage_manager	*	cpe:2.3:a:ibm:tivoli_storage_manager::::::::
apple	macos	-	cpe:2.3:o:apple:macos:-:::::::*
linux	linux_kernel	-	cpe:2.3:o:linux:linux_kernel:-:::::::*
opengroup	unix	-	cpe:2.3:o:opengroup:unix:-:::::::*