Tivoli Storage Manager
Created 4/19/02
CAN 2002-0541
Impact
A remote attacker could crash the Tivoli Storage Manager
or execute arbitrary commands on the client or server.
Background
IBM Tivoli
Storage Manager (TSM) provides centralized management for
automated backup and restoration operations. It runs a web
server on port 1580 and a Client Acceptor service on port 1581.
The Problem
Buffer overflow conditions in TSM could allow
a remote attacker to crash the service or execute arbitrary commands,
either by entering a very long login string on the server login
page, or by sending a very long URL to the Client Acceptor.
TSM 4.2 and 5.1 Windows clients, TSM 4.1, 4.2, or 5.1 servers or storage agents,
and TSM 3.1 servers for VM or AS/400 are affected by this vulnerability.
Resolution
Install TSM client 4.2.1.32, and install server patch
4.2.1.15 for version 4.2, 4.1.5.3 for version 4.1, or 3.1.2.91 for
version 3.1.
Patches are available from Tivoli.
Where can I read more about this?
This vulnerability was discussed in
Tivoli Storage Manager Flash 4
and iXsecurity vulnerability reports 20020327
and 20020328.