Vulnerability Details CVE-2009-3854
Buffer overflow in the traditional client scheduler in the client in IBM Tivoli Storage Manager (TSM) 5.3 before 5.3.6.7 and 5.4 before 5.4.2 allows remote attackers to execute arbitrary code via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.107
EPSS Ranking 92.9%
CVSS Severity
CVSS v2 Score 10.0
References
- http://secunia.com/advisories/32534
- http://securitytracker.com/id?1023136
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC61058
- http://www-01.ibm.com/support/docview.wss?uid=swg21405562
- http://www.vupen.com/english/advisories/2009/3132
- http://secunia.com/advisories/32534
- http://securitytracker.com/id?1023136
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC61058
- http://www-01.ibm.com/support/docview.wss?uid=swg21405562
- http://www.vupen.com/english/advisories/2009/3132
Products affected by CVE-2009-3854
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.2.5.3
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.0
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.1
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.2
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.2.4
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.3
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.4
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.5.1
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.1
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.2
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.3
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.4
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.5
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.6
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.4.0
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.4.1
-
cpe:2.3:a:ibm:tivoli_storage_manager:5.5.0