CVE-2006-6309

Опубликовано: 06 дек. 2006

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Multiple array index errors in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to read arbitrary memory locations and cause a denial of service (crash) via a large index value in unspecified messages, a different issue than CVE-2006-5855.

Ссылки

http://securityreason.com/securityalert/1979
http://www-1.ibm.com/support/docview.wss?uid=swg21250261
Exploit
Vendor Advisory
http://www.securityfocus.com/archive/1/453544/100/0/threaded
http://www.tippingpoint.com/security/advisories/TSRT-06-14.html
Exploit
Vendor Advisory
http://securityreason.com/securityalert/1979
http://www-1.ibm.com/support/docview.wss?uid=swg21250261
Exploit
Vendor Advisory
http://www.securityfocus.com/archive/1/453544/100/0/threaded
http://www.tippingpoint.com/security/advisories/TSRT-06-14.html
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:tivoli_storage_manager:*:*:*:*:*:*:*:*

Версия до 5.2.9 (включая)

cpe:2.3:a:ibm:tivoli_storage_manager:5.3.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:tivoli_storage_manager:5.3.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:tivoli_storage_manager:5.3.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:tivoli_storage_manager:5.3.3:*:*:*:*:*:*:*

EPSS

Процентиль: 81%

0.01503

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-hjwm-vvgm-jhxw

github

почти 4 года назад