CyberSec.Space Logo
Back to CVE Browser

CVE-2006-5855

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0480%
EPSS Percentile12.80th
PublishedDec 6, 2006
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple buffer overflows in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in (1) the language field at logon that begins with a 0x18 byte, (2) two unspecified parameters to the SmExecuteWdsfSession function, and (3) the contact field in an open registration message.

Affected Platforms (CPE)

πŸ“¦
Ibm

Tivoli Storage Manager

= 5.2.7
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.2.8
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.0
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.1
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.2
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.3

References & Advisories

πŸ”— http://secunia.com/advisories/23177
πŸ”— http://securityreason.com/securityalert/1979
πŸ”— http://securitytracker.com/id?1017333
πŸ”— http://www-1.ibm.com/support/docview.wss?uid=swg1IC50347
πŸ”— http://www-1.ibm.com/support/docview.wss?uid=swg21250261
πŸ”— http://www.kb.cert.org/vuls/id/350625
πŸ”— http://www.kb.cert.org/vuls/id/478753
πŸ”— http://www.kb.cert.org/vuls/id/887249

Related Vulnerabilities

CVE-2007-488010.0

Buffer overflow in the Client Acceptor Daemon (CAD), dsmcad.exe, in certain IBM Tivoli Storage Manager (TSM) clients 5.1 before 5....

CVE-2008-024710.0

Heap-based buffer overflow in the Express Backup Server service (dsmsvc.exe) in IBM Tivoli Storage Manager (TSM) Express 5.3 befor...

CVE-2003-136110.0

Unknown vulnerability in VERITAS Bare Metal Restore (BMR) of Tivoli Storage Manager (TSM) 3.1.0 through 3.2.1 allows remote attack...

CVE-2009-152010.0

Buffer overflow in the Web GUI in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5....