cpe:/a:ibm:tivoli_storage_manager:5.2 cpe:/a:ibm:tivoli_storage_manager:5.3 cpe:/a:ibm:tivoli_storage_manager:5.3.0 cpe:/a:ibm:tivoli_storage_manager:5.3.1 cpe:/a:ibm:tivoli_storage_manager:5.3.2 cpe:/a:ibm:tivoli_storage_manager:5.3.2.4 cpe:/a:ibm:tivoli_storage_manager:5.3.3 cpe:/a:ibm:tivoli_storage_manager:5.3.4 cpe:/a:ibm:tivoli_storage_manager:5.3.5.1 cpe:/a:ibm:tivoli_storage_manager:5.4.0 cpe:/a:ibm:tivoli_storage_manager:5.4.1 cpe:/a:ibm:tivoli_storage_manager:5.4.2 cpe:/a:ibm:tivoli_storage_manager:5.4.2.2 cpe:/a:ibm:tivoli_storage_manager:5.4.2.3 cpe:/a:ibm:tivoli_storage_manager:5.4.2.4 cpe:/a:ibm:tivoli_storage_manager:5.4.4.0 cpe:/a:ibm:tivoli_storage_manager_express:5.3 cpe:/a:ibm:tivoli_storage_manager_express:5.3.3.0 cpe:/a:ibm:tivoli_storage_manager_express:5.3.6.4 cpe:/a:ibm:tivoli_storage_manager_express:5.3.7.3 CVE-2008-4563 2009-03-11T10:19:15.187-04:00 2017-08-07T21:32:44.890-04:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-03-11T11:26:00.000-04:00 ALLOWS_ADMIN_ACCESS SECTRACK 1021837 FULLDISC 20090310 Assurent VR - IBM Tivoli Storage Manager Express Backup Server Heap Corruption IDEFENSE 20090310 IBM Tivoli Storage Manager Express Heap Buffer Overflow Vulnerability BID 34077 SECUNIA 34245 OSVDB 52617 VUPEN ADV-2009-0669 CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21377388 XF tivoli-tsm-adsmdll-bo(49188) Heap-based buffer overflow in adsmdll.dll 5.3.7.7296, as used by the daemon (dsmsvc.exe) in the backup server in IBM Tivoli Storage Manager (TSM) Express 5.3.7.3 and earlier and TSM 5.2, 5.3 before 5.3.6.0, and 5.4.0.0 through 5.4.4.0, allows remote attackers to execute arbitrary code via a crafted length value.