CyberSec.Space Logo
Back to CVE Browser

CVE-2009-3853

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0730%
EPSS Percentile44.55th
PublishedNov 4, 2009
Last ModifiedApr 23, 2026

Vulnerability Description

Stack-based buffer overflow in the client acceptor daemon (CAD) scheduler in the client in IBM Tivoli Storage Manager (TSM) 5.3 before 5.3.6.7, 5.4 before 5.4.3, 5.5 before 5.5.2.2, and 6.1 before 6.1.0.2, and TSM Express 5.3.3.0 through 5.3.6.6, allows remote attackers to execute arbitrary code via crafted data in a TCP packet.

Affected Platforms (CPE)

πŸ“¦
Ibm

Tivoli Storage Manager

= 5.2.5.3
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.0
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.1
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.2
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.2.4
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.3
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.3
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.4
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.4
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.5
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.5.1
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.6
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.6.1
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.6.2
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.6.3
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.6.4
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.6.5
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.6.6
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.3.6.6
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.4.0
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.4.1
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.4.2
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.5.0
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.5.1
πŸ“¦
Ibm

Tivoli Storage Manager

= 5.5.2
πŸ“¦
Ibm

Tivoli Storage Manager

= 6.1.0

References & Advisories

πŸ”— http://secunia.com/advisories/32534
πŸ”— http://secunia.com/secunia_research/2008-51/
πŸ”— http://securitytracker.com/id?1023136
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg1IC61036
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg21405562
πŸ”— http://www.securityfocus.com/archive/1/507654/100/0/threaded
πŸ”— http://www.vupen.com/english/advisories/2009/3132
πŸ”— http://secunia.com/advisories/32534

Related Vulnerabilities

CVE-2006-585510.0

Multiple buffer overflows in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to cause ...

CVE-2007-488010.0

Buffer overflow in the Client Acceptor Daemon (CAD), dsmcad.exe, in certain IBM Tivoli Storage Manager (TSM) clients 5.1 before 5....

CVE-2003-136110.0

Unknown vulnerability in VERITAS Bare Metal Restore (BMR) of Tivoli Storage Manager (TSM) 3.1.0 through 3.2.1 allows remote attack...

CVE-2008-024710.0

Heap-based buffer overflow in the Express Backup Server service (dsmsvc.exe) in IBM Tivoli Storage Manager (TSM) Express 5.3 befor...