IBM Patches Tivoli Storage Manager
IBM has released a security update for the Windows client of their Tivoli Storage Manager (TSM) HSM which eliminates a remotely exploitable buffer overflow vulnerability. The problem could be exploited to crash the client or allow an attacker to inject malicious code.
According to IBM, affected Windows versions are 5.3.2.0 through 5.3.5.0, 5.4.0.0 through 5.4.2.5 and 5.5.0.0 through 5.5.1.4. The 5.5.1.8 and 5.4.2.6 updates that resolve the problem are now available to download.
See also:
- TSM HSM for Windows buffer overrun security vulnerability, an IBM advisory.
(crve)