CERT-In Vulnerability Note CIVN-2009-35
IBM Tivoli Storage Manager Buffer Overflow Vulnerability

Original Issue Date:March 17, 2009

Severity Rating: High

Systems Affected

• IBM Tivoli Storage Manager Express
• IBM Tivoli Storage Manager 5.4 (5.4.0.0 to 5.4.4.0)
• IBM Tivoli Storage Manager 5.3
• IBM Tivoli Storage Manager 5.2
  

Overview

A vulnerability has been reported within adsmdll.dll which is loaded by the Tivoli Storage Manager Express daemon dsmsvc.exe. The exploitation of this vulnerability by an unauthenticated remote user allows execution of arbitrary code with SYSTEM privileges.

Description

A heap-based buffer overflow vulnerability exists in adsmdll.dll 5.3.7.7296, as used by the daemon (dsmsvc.exe) in the IBM TSM Express server 5.3.7.3 and earlier and the IBM TSM Enterprise server prior to Version 5.4.4.1. A remote unauthenticated attacker could exploit this vulnerability via a crafted length value to execute arbitrary code.

Workaround

• Enable the VERBCHECK option in the TSM server options file.

Solution

Apply patches as mentioned in IBM advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21377388

Vendor Information

IBM
http://www-01.ibm.com/support/docview.wss?uid=swg21377388

References

Secunia
http://secunia.com/advisories/34245

iDefense Labs
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=775

Security Lab
http://en.securitylab.ru/nvd/369905.php

SecurityFocus
http://www.securityfocus.com/bid/34077

Security Tracker
http://securitytracker.com/id?1021837

ISS-XFORCE
http://xforce.iss.net/xforce/xfdb/49188

VUPEN Security
http://www.vupen.com/english/advisories/2009/0669

CVE Name
CVE-2008-4563

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003