CVE-2008-4828
CVE-2008-4828
Multiple stack-based buffer overflows in dsmagent.exe in the Remote Agent Service in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, and 5.4.0.0 through 5.4.1.96, and the TSM Express client 5.3.3.0 through 5.3.6.4, allow remote attackers to execute arbitrary code via (1) a request packet that is not properly parsed by an unspecified "generic string handling function" or (2) a crafted NodeName in a dicuGetIdentifyRequest request packet, related to the (a) Web GUI and (b) Java GUI.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/16428não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://osvdb.org/54231http://osvdb.org/54232http://secunia.com/advisories/32604http://secunia.com/secunia_research/2008-55/https://exchange.xforce.ibmcloud.com/vulnerabilities/50327http://www-01.ibm.com/support/docview.wss?uid=swg21384389http://www-1.ibm.com/support/docview.wss?uid=swg1IC59513http://www.securityfocus.com/archive/1/503182/100/0/threadedhttp://www.vupen.com/english/advisories/2009/1235