Vulnerability Description
Buffer overflow in Tivoli Storage Manager TSM (1) Server or Storage Agents 3.1 through 5.1, and (2) the TSM Client Acceptor Service 4.2 and 5.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request to port 1580 or port 1581.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Tivoli Storage Manager | 4.2 |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0126.html
- http://online.securityfocus.com/archive/1/267143PatchVendor Advisory
- http://www.iss.net/security_center/static/8817.phpPatchVendor Advisory
- http://www.iss.net/security_center/static/8825.php
- http://www.securityfocus.com/bid/4492
- http://www.securityfocus.com/bid/4500PatchVendor Advisory
- http://www.tivoli.com/support/storage_mgr/flash_httpport.htmlPatchVendor Advisory
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0126.html
- http://online.securityfocus.com/archive/1/267143PatchVendor Advisory
- http://www.iss.net/security_center/static/8817.phpPatchVendor Advisory
- http://www.iss.net/security_center/static/8825.php
- http://www.securityfocus.com/bid/4492
- http://www.securityfocus.com/bid/4500PatchVendor Advisory
- http://www.tivoli.com/support/storage_mgr/flash_httpport.htmlPatchVendor Advisory
FAQ
What is CVE-2002-0541?
CVE-2002-0541 is a vulnerability with a CVSS score of 7.5 (HIGH). Buffer overflow in Tivoli Storage Manager TSM (1) Server or Storage Agents 3.1 through 5.1, and (2) the TSM Client Acceptor Service 4.2 and 5.1, allows remote attackers to cause a denial of service (c...
How severe is CVE-2002-0541?
CVE-2002-0541 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0541?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Tivoli Storage Manager.