First published: Fri Oct 04 2013(Updated: )
Buffer overflow in dsmtca in IBM Tivoli Storage Manager (TSM) through 5.5.4.0, 6.1.0 through 6.1.5.4, 6.2.0 through 6.2.4.7, and 6.3.0 through 6.3.0.17 on UNIX and Linux allows local users to gain privileges via unspecified vectors.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Tivoli Storage Manager | =6.3.0 | |
IBM Tivoli Storage Manager | =6.3.0.17 | |
IBM Tivoli Storage Manager | =6.1.0 | |
IBM Tivoli Storage Manager | =6.1.1 | |
IBM Tivoli Storage Manager | =6.1.2 | |
IBM Tivoli Storage Manager | =6.1.3 | |
IBM Tivoli Storage Manager | =6.1.4 | |
IBM Tivoli Storage Manager | =6.1.5 | |
IBM Tivoli Storage Manager | =6.1.5.4 | |
IBM Tivoli Storage Manager | <=5.5.4 | |
IBM Tivoli Storage Manager | =5.1.0 | |
IBM Tivoli Storage Manager | =5.1.1 | |
IBM Tivoli Storage Manager | =5.1.5 | |
IBM Tivoli Storage Manager | =5.1.6 | |
IBM Tivoli Storage Manager | =5.1.7 | |
IBM Tivoli Storage Manager | =5.1.8 | |
IBM Tivoli Storage Manager | =5.1.9 | |
IBM Tivoli Storage Manager | =5.1.10 | |
IBM Tivoli Storage Manager | =5.2 | |
IBM Tivoli Storage Manager | =5.2.0 | |
IBM Tivoli Storage Manager | =5.2.1 | |
IBM Tivoli Storage Manager | =5.2.2 | |
IBM Tivoli Storage Manager | =5.2.4 | |
IBM Tivoli Storage Manager | =5.2.5.1 | |
IBM Tivoli Storage Manager | =5.2.5.2 | |
IBM Tivoli Storage Manager | =5.2.5.3 | |
IBM Tivoli Storage Manager | =5.2.7 | |
IBM Tivoli Storage Manager | =5.2.8 | |
IBM Tivoli Storage Manager | =5.2.9 | |
IBM Tivoli Storage Manager | =5.3 | |
IBM Tivoli Storage Manager | =5.3.0 | |
IBM Tivoli Storage Manager | =5.3.1 | |
IBM Tivoli Storage Manager | =5.3.2 | |
IBM Tivoli Storage Manager | =5.3.2.4 | |
IBM Tivoli Storage Manager | =5.3.3 | |
IBM Tivoli Storage Manager | =5.3.4 | |
IBM Tivoli Storage Manager | =5.3.5.1 | |
IBM Tivoli Storage Manager | =5.3.6.1 | |
IBM Tivoli Storage Manager | =5.3.6.2 | |
IBM Tivoli Storage Manager | =5.3.6.3 | |
IBM Tivoli Storage Manager | =5.3.6.4 | |
IBM Tivoli Storage Manager | =5.3.6.5 | |
IBM Tivoli Storage Manager | =5.3.6.6 | |
IBM Tivoli Storage Manager | =5.4 | |
IBM Tivoli Storage Manager | =5.4.0 | |
IBM Tivoli Storage Manager | =5.4.1 | |
IBM Tivoli Storage Manager | =5.4.2 | |
IBM Tivoli Storage Manager | =5.4.2.2 | |
IBM Tivoli Storage Manager | =5.4.2.3 | |
IBM Tivoli Storage Manager | =5.4.2.4 | |
IBM Tivoli Storage Manager | =5.4.3.0 | |
IBM Tivoli Storage Manager | =5.4.3.2 | |
IBM Tivoli Storage Manager | =5.4.3.3 | |
IBM Tivoli Storage Manager | =5.4.4.0 | |
IBM Tivoli Storage Manager | =5.5.0 | |
IBM Tivoli Storage Manager | =5.5.1 | |
IBM Tivoli Storage Manager | =5.5.2 | |
IBM Tivoli Storage Manager | =5.5.3 | |
IBM Tivoli Storage Manager | =6.2.0 | |
IBM Tivoli Storage Manager | =6.2.1 | |
IBM Tivoli Storage Manager | =6.2.2 | |
IBM Tivoli Storage Manager | =6.2.3 | |
IBM Tivoli Storage Manager | =6.2.4 | |
IBM Tivoli Storage Manager | =6.2.4.7 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2013-2964 has been classified as a high severity vulnerability due to its potential to allow privilege escalation for local users.
To resolve CVE-2013-2964, users should upgrade IBM Tivoli Storage Manager to a version that is not susceptible to the vulnerability.
CVE-2013-2964 affects IBM Tivoli Storage Manager versions up to 5.5.4, and versions 6.1.0 through 6.1.5.4, 6.2.0 through 6.2.4.7, and 6.3.0 through 6.3.0.17.
CVE-2013-2964 can be exploited by local users who have access to the system running the affected versions of IBM Tivoli Storage Manager.
CVE-2013-2964 affects systems running UNIX and Linux operating systems where IBM Tivoli Storage Manager is installed.