← back
CVE-2006-5855

CVE-2006-5855

EPSS 26.3%
Multiple buffer overflows in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in (1) the language field at logon that begins with a 0x18 byte, (2) two unspecified parameters to the SmExecuteWdsfSession function, and (3) the contact field in an open registration message.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/23177http://securityreason.com/securityalert/1979http://securitytracker.com/id?1017333https://exchange.xforce.ibmcloud.com/vulnerabilities/30699https://exchange.xforce.ibmcloud.com/vulnerabilities/30701https://exchange.xforce.ibmcloud.com/vulnerabilities/30702http://www-1.ibm.com/support/docview.wss?uid=swg1IC50347http://www-1.ibm.com/support/docview.wss?uid=swg21250261http://www.kb.cert.org/vuls/id/350625http://www.kb.cert.org/vuls/id/478753http://www.kb.cert.org/vuls/id/887249http://www.securityfocus.com/archive/1/453544/100/0/threaded