CyberSec.Space Logo
Back to CVE Browser

CVE-2008-0247

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0590%
EPSS Percentile34.84th
PublishedJan 12, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Heap-based buffer overflow in the Express Backup Server service (dsmsvc.exe) in IBM Tivoli Storage Manager (TSM) Express 5.3 before 5.3.7.3 allows remote attackers to execute arbitrary code via a packet with a large length value.

Affected Platforms (CPE)

πŸ“¦
Ibm

Tivoli Storage Manager Express

<= 5.3

References & Advisories

πŸ”— http://secunia.com/advisories/28440
πŸ”— http://www-1.ibm.com/support/docview.wss?uid=swg21291536
πŸ”— http://www.securityfocus.com/archive/1/486270/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/27235
πŸ”— http://www.securitytracker.com/id?1019182
πŸ”— http://www.vupen.com/english/advisories/2008/0106
πŸ”— http://www.zerodayinitiative.com/advisories/ZDI-08-001.html
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/39604

Related Vulnerabilities

CVE-2008-480110.0

Heap-based buffer overflow in the Data Protection for SQL CAD service (aka dsmcat.exe) in the Client Acceptor Daemon (CAD) and the...

CVE-2008-456310.0

Heap-based buffer overflow in adsmdll.dll 5.3.7.7296, as used by the daemon (dsmsvc.exe) in the backup server in IBM Tivoli Storag...

CVE-2008-482810.0

Multiple stack-based buffer overflows in dsmagent.exe in the Remote Agent Service in the IBM Tivoli Storage Manager (TSM) client 5...

CVE-2009-38539.3

Stack-based buffer overflow in the client acceptor daemon (CAD) scheduler in the client in IBM Tivoli Storage Manager (TSM) 5.3 be...