CVE-2007-4880
CVE-2007-4880
Buffer overflow in the Client Acceptor Daemon (CAD), dsmcad.exe, in certain IBM Tivoli Storage Manager (TSM) clients 5.1 before 5.1.8.1, 5.2 before 5.2.5.2, 5.3 before 5.3.5.3, and 5.4 before 5.4.1.2 allows remote attackers to execute arbitrary code via crafted HTTP headers, aka IC52905.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 2
exploitdbwww.exploit-db.com/exploits/4573não verificadoexploitdbwww.exploit-db.com/exploits/16764não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://osvdb.org/38161http://secunia.com/advisories/26883http://securityreason.com/securityalert/3184https://exchange.xforce.ibmcloud.com/vulnerabilities/36700http://www-1.ibm.com/support/docview.wss?uid=swg21268775http://www-1.ibm.com/support/search.wss?rs=0&q=IC52905&apar=onlyhttp://www.securityfocus.com/archive/1/480492http://www.securityfocus.com/bid/25743http://www.securitytracker.com/id?1018725http://www.vupen.com/english/advisories/2007/3228http://www.zerodayinitiative.com/advisories/ZDI-07-054.html