CVE

Id
46340  
CVE No.
CVE-2010-3756  
Status
Candidate  
Description
The _CalcHashValueWithLength function in FastBackServer.exe in the Server in IBM Tivoli Storage Manager (TSM) FastBack 5.5.0.0 through 5.5.6.0 and 6.1.0.0 through 6.1.0.1 does not properly validate an unspecified length value, which allows remote attackers to cause a denial of service (daemon crash) by sending data over TCP. NOTE: this might overlap CVE-2010-3060.  
Phase
Assigned (20101005)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
505207 46340 CVE-2010-3756 BUGTRAQ:20100929 ZDI-10-186: IBM TSM FastBack _CalcHashValueWithLength Remote Denial of Service Vulnerability  View
505208 46340 CVE-2010-3756 URL:http://www.securityfocus.com/archive/1/archive/1/514070/100/0/threaded  View
505209 46340 CVE-2010-3756 MISC:http://zerodayinitiative.com/advisories/ZDI-10-186/  View
505210 46340 CVE-2010-3756 CONFIRM:http://www.ibm.com/support/docview.wss?uid=swg21443820  View
505211 46340 CVE-2010-3756 AIXAPAR:IC69883  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
37448 JVNDB-2010-003233 IBM TSM FastBack の FastBackMount.exe におけるサービス運用妨害 (DoS) の脆弱性 IBM Tivoli Storage Manager (TSM) FastBack の Mount サービスの FastBackMount.exe は、メモリ割当の失敗を適切に処理しないため、サービス運用妨害 (NULL ポインタデリファレンス、デーモンクラッシュおよびリカバリの失敗) 状態となる脆弱性が存在します。 CVE-2010-3760 46340 7.8 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-003233.html  View