IBM Tivoli Storage Manager Client Multiple Buffer Overflows (swg21457604)

This script is Copyright (C) 2011-2015 Tenable Network Security, Inc.


Synopsis :

The remote backup client is susceptible to multiple local attacks.

Description :

The remote host is running an IBM Tivoli Storage Manager (TSM) client.
The version running on the remote host has one or more of the
following vulnerabilities :

- A stack-based buffer overflow exists in the Journal
Based Backup function because it fails to properly
sanitize user-supplied input and could allow a local
attacker to execute arbitrary code. (CVE-2011-1222)

- A stack-based buffer overflow exists in the Alternate
Data Streams function because it fails to properly
sanitize user-supplied input and could allow a local
attacker to execute arbitrary code. (CVE-2011-1223)

See also :

https://www-304.ibm.com/support/docview.wss?uid=swg1IC77049
https://www-304.ibm.com/support/docview.wss?uid=swg1IC77052
https://www-304.ibm.com/support/docview.wss?uid=swg21457604

Solution :

Upgrade to the relevant version of Tivoli Storage Manager client
referenced in the vendor's advisory.

Risk factor :

High / CVSS Base Score : 7.2
(CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 5.3
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 55594 ()

Bugtraq ID: 48519

CVE ID: CVE-2011-1222
CVE-2011-1223

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now