Vigil@nce - IBM TSM Client: buffer overflow of GUI
August 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can generate a buffer overflow in the GUI of IBM TSM
Client, in order to trigger a denial of service.
Impacted products: Tivoli Storage Manager
Severity: 1/4
Creation date: 14/08/2014
DESCRIPTION OF THE VULNERABILITY
The IBM TSM Client product can be installed on Windows or
Macintosh.
However, if the size of data is greater than the size of the
storage array, an overflow occurs in the GUI.
An attacker can therefore generate a buffer overflow in the GUI of
IBM TSM Client, in order to trigger a denial of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/IBM-TSM-Client-buffer-overflow-of-GUI-15193