返回 CVE 瀏覽器

CVE-2007-4880

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0970%

EPSS Percentile33.49th

Published2007年9月28日

Last Modified2026年4月23日

Vulnerability Description

Buffer overflow in the Client Acceptor Daemon (CAD), dsmcad.exe, in certain IBM Tivoli Storage Manager (TSM) clients 5.1 before 5.1.8.1, 5.2 before 5.2.5.2, 5.3 before 5.3.5.3, and 5.4 before 5.4.1.2 allows remote attackers to execute arbitrary code via crafted HTTP headers, aka IC52905.

Affected Platforms (CPE)

📦

Ibm

Tivoli Storage Manager Client

= 5.1

📦

Ibm

Tivoli Storage Manager Client

= 5.1.8.0

📦

Ibm

Tivoli Storage Manager Client

= 5.2

📦

Ibm

Tivoli Storage Manager Client

= 5.2.5.1

📦

Ibm

Tivoli Storage Manager Client

= 5.3

📦

Ibm

Tivoli Storage Manager Client

= 5.3.5.2

📦

Ibm

Tivoli Storage Manager Client

= 5.4

📦

Ibm

Tivoli Storage Manager Client

= 5.4.1.1

References & Advisories

🔗 http://osvdb.org/38161

🔗 http://secunia.com/advisories/26883

🔗 http://securityreason.com/securityalert/3184

🔗 http://www-1.ibm.com/support/docview.wss?uid=swg21268775

🔗 http://www-1.ibm.com/support/search.wss?rs=0&q=IC52905&apar=only

🔗 http://www.securityfocus.com/archive/1/480492

🔗 http://www.securityfocus.com/bid/25743

🔗 http://www.securitytracker.com/id?1018725

相關漏洞威脅

CVE-2008-480110.0

Heap-based buffer overflow in the Data Protection for SQL CAD service (aka dsmcat.exe) in the Client Acceptor Daemon (CAD) and the...

CVE-2008-482810.0

Multiple stack-based buffer overflows in dsmagent.exe in the Remote Agent Service in the IBM Tivoli Storage Manager (TSM) client 5...

CVE-2009-152010.0

Buffer overflow in the Web GUI in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5....

CVE-2009-086910.0

Buffer overflow in the client in IBM Tivoli Storage Manager (TSM) HSM 5.3.2.0 through 5.3.5.0, 5.4.0.0 through 5.4.2.5, and 5.5.0....