Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5022

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-5022
Last Modified 07 Mar 2011 09:59:57
Published 21 Sep 2007 02:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5022

Summary

Unspecified vulnerability in certain IBM Tivoli Storage Manager (TSM) clients 5.1 before 5.1.8.1, 5.2 before 5.2.5.2, 5.3 before 5.3.5.3, and 5.4 before 5.4.1.2, when using "server-initiated prompted scheduling," allows remote attackers to read a client's data, aka IC53616.

Vulnerable Systems

Application

  • Ibm Tivoli Storage Manager Client 5.1

  • Ibm Tivoli Storage Manager Client 5.1.8.0

  • Ibm Tivoli Storage Manager Client 5.2

  • Ibm Tivoli Storage Manager Client 5.2.5.1

  • Ibm Tivoli Storage Manager Client 5.3

  • Ibm Tivoli Storage Manager Client 5.3.5.2

  • Ibm Tivoli Storage Manager Client 5.4

  • Ibm Tivoli Storage Manager Client 5.4.1.1


References

XF - ibm-tsm-server-unauthorized-access(36701)

BID - 25743

CONFIRM - http://www-1.ibm.com/support/docview.wss?uid=swg21268775

VUPEN - ADV-2007-3228

AIXAPAR - IC53616

SECUNIA - 26883

OSVDB - 38162

SECTRACK - 1018725


Last Updated: 27 May 2016 10:46:02