IBM Tivoli Storage Manager Multiple Remote Overflows

This script is Copyright (C) 2007-2013 Tenable Network Security, Inc.


Synopsis :

Arbitrary code can be executed on the remote host.

Description :

The remote host is running a version of IBM Tivoli Storage Manager
that is vulnerable to multiple buffer overflows. An attacker may
exploit these flaws to execute arbitrary code on the remote host or to
disable this service remotely.

To exploit this flaw, an attacker would need to send a specially
crafted packet to the remote service.

See also :

http://dvlabs.tippingpoint.com/advisory/TPTI-06-14

Solution :

Upgrade to :

- Tivoli Storage Manager >= 5.2.9
- Tivoli Storage Manager >= 5.3.4
- Tivoli Storage Manager Express >= 5.3.7.1

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.3
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Gain a shell remotely

Nessus Plugin ID: 25662 (ibm_tsm_multiple.nasl)

Bugtraq ID: 21440

CVE ID: CVE-2006-5855