ID CVE-2013-0471
Summary The traditional scheduler in the client in IBM Tivoli Storage Manager (TSM) before 6.2.5.0, 6.3 before 6.3.1.0, and 6.4 before 6.4.0.1, when Prompted mode is enabled, allows remote attackers to cause a denial of service (scheduling outage) via unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:ibm:tivoli_storage_manager:6.2.4.4
    cpe:2.3:a:ibm:tivoli_storage_manager:6.2.4.4
  • IBM Tivoli Storage Manager 6.2.1
    cpe:2.3:a:ibm:tivoli_storage_manager:6.2.1
  • IBM Tivoli Storage Manager 6.2.0
    cpe:2.3:a:ibm:tivoli_storage_manager:6.2.0
  • cpe:2.3:a:ibm:tivoli_storage_manager:6.2.0.0
    cpe:2.3:a:ibm:tivoli_storage_manager:6.2.0.0
  • IBM Tivoli Storage Manager 6.1.1
    cpe:2.3:a:ibm:tivoli_storage_manager:6.1.1
  • IBM Tivoli Storage Manager 6.1.3
    cpe:2.3:a:ibm:tivoli_storage_manager:6.1.3
  • IBM Tivoli Storage Manager 6.1.2
    cpe:2.3:a:ibm:tivoli_storage_manager:6.1.2
  • IBM Tivoli Storage Manager 6.1.0
    cpe:2.3:a:ibm:tivoli_storage_manager:6.1.0
  • cpe:2.3:a:ibm:tivoli_storage_manager:6.0
    cpe:2.3:a:ibm:tivoli_storage_manager:6.0
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.2.4
    cpe:2.3:a:ibm:tivoli_storage_manager:5.2.4
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.2.5.2
    cpe:2.3:a:ibm:tivoli_storage_manager:5.2.5.2
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.2.5.3
    cpe:2.3:a:ibm:tivoli_storage_manager:5.2.5.3
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.4.4.0
    cpe:2.3:a:ibm:tivoli_storage_manager:5.4.4.0
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.4
    cpe:2.3:a:ibm:tivoli_storage_manager:5.4
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.3.5.1
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.5.1
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.3.2.4
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.2.4
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.3
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3
  • IBM Tivoli Storage Manager 5.1.8
    cpe:2.3:a:ibm:tivoli_storage_manager:5.1.8
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.3.4
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.4
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.1
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.1
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.2
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.2
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.4.2.2
    cpe:2.3:a:ibm:tivoli_storage_manager:5.4.2.2
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.4.2.4
    cpe:2.3:a:ibm:tivoli_storage_manager:5.4.2.4
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.4.2.3
    cpe:2.3:a:ibm:tivoli_storage_manager:5.4.2.3
  • IBM Tivoli Storage Manager 5.2.5.1
    cpe:2.3:a:ibm:tivoli_storage_manager:5.2.5.1
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.2
    cpe:2.3:a:ibm:tivoli_storage_manager:5.2
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.1.0
    cpe:2.3:a:ibm:tivoli_storage_manager:5.1.0
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.1.10
    cpe:2.3:a:ibm:tivoli_storage_manager:5.1.10
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.1.1
    cpe:2.3:a:ibm:tivoli_storage_manager:5.1.1
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.1.6
    cpe:2.3:a:ibm:tivoli_storage_manager:5.1.6
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.1.5
    cpe:2.3:a:ibm:tivoli_storage_manager:5.1.5
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.1.9
    cpe:2.3:a:ibm:tivoli_storage_manager:5.1.9
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.1.7
    cpe:2.3:a:ibm:tivoli_storage_manager:5.1.7
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.2.1
    cpe:2.3:a:ibm:tivoli_storage_manager:5.2.1
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.2.0
    cpe:2.3:a:ibm:tivoli_storage_manager:5.2.0
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.4
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.4
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.2.2
    cpe:2.3:a:ibm:tivoli_storage_manager:5.2.2
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.3
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.3
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.4.2
    cpe:2.3:a:ibm:tivoli_storage_manager:5.4.2
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.6
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.6
  • IBM Tivoli Storage Manager 5.5.2
    cpe:2.3:a:ibm:tivoli_storage_manager:5.5.2
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.5.1
    cpe:2.3:a:ibm:tivoli_storage_manager:5.5.1
  • IBM Tivoli Storage Manager 5.4.0
    cpe:2.3:a:ibm:tivoli_storage_manager:5.4.0
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.4.3.3
    cpe:2.3:a:ibm:tivoli_storage_manager:5.4.3.3
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.5
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.6.5
  • IBM Tivoli Storage Manager 5.5.0
    cpe:2.3:a:ibm:tivoli_storage_manager:5.5.0
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.4.3.2
    cpe:2.3:a:ibm:tivoli_storage_manager:5.4.3.2
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.4.3.0
    cpe:2.3:a:ibm:tivoli_storage_manager:5.4.3.0
  • cpe:2.3:a:ibm:tivoli_storage_manager:5.4.1
    cpe:2.3:a:ibm:tivoli_storage_manager:5.4.1
  • IBM Tivoli Storage Manager 5.3.2
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.2
  • IBM Tivoli Storage Manager 5.3.3
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.3
  • IBM Tivoli Storage Manager 5.3.0
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.0
  • IBM Tivoli Storage Manager 5.3.1
    cpe:2.3:a:ibm:tivoli_storage_manager:5.3.1
  • IBM Tivoli Storage Manager 5.2.8
    cpe:2.3:a:ibm:tivoli_storage_manager:5.2.8
  • IBM Tivoli Storage Manager 5.2.9
    cpe:2.3:a:ibm:tivoli_storage_manager:5.2.9
  • IBM Tivoli Storage Manager 5.2.7
    cpe:2.3:a:ibm:tivoli_storage_manager:5.2.7
  • cpe:2.3:a:ibm:tivoli_storage_manager:4.2.3
    cpe:2.3:a:ibm:tivoli_storage_manager:4.2.3
  • cpe:2.3:a:ibm:tivoli_storage_manager:4.2.2
    cpe:2.3:a:ibm:tivoli_storage_manager:4.2.2
  • cpe:2.3:a:ibm:tivoli_storage_manager:4.2.4
    cpe:2.3:a:ibm:tivoli_storage_manager:4.2.4
  • IBM Tivoli Storage Manager 4.2.1
    cpe:2.3:a:ibm:tivoli_storage_manager:4.2.1
  • IBM Tivoli Storage Manager 4.2
    cpe:2.3:a:ibm:tivoli_storage_manager:4.2
  • cpe:2.3:a:ibm:tivoli_storage_manager:3.2.1
    cpe:2.3:a:ibm:tivoli_storage_manager:3.2.1
  • cpe:2.3:a:ibm:tivoli_storage_manager:3.1.0
    cpe:2.3:a:ibm:tivoli_storage_manager:3.1.0
  • cpe:2.3:a:ibm:tivoli_storage_manager:6.3.0.0
    cpe:2.3:a:ibm:tivoli_storage_manager:6.3.0.0
  • cpe:2.3:a:ibm:tivoli_storage_manager:6.4.0.0
    cpe:2.3:a:ibm:tivoli_storage_manager:6.4.0.0
CVSS
Base: 4.3 (as of 21-02-2013 - 10:19)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
NASL family Windows
NASL id TIVOLI_STORAGE_MANAGER_CLIENT_DOS.NASL
description The version of Tivoli Storage Manager Client installed on the remote Windows host is potentially affected by a denial of service vulnerability in the TSM client traditional scheduler which allows a remote attacker to disable the traditional scheduler when it is in Prompted mode.
last seen 2019-02-21
modified 2018-08-01
plugin id 64569
published 2013-02-12
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=64569
title IBM Tivoli Storage Manager Client Denial of Service
refmap via4
aixapar IC87331
confirm http://www-01.ibm.com/support/docview.wss?uid=swg21624135
xf tsm-scheduler-dos(81215)
Last major update 21-02-2013 - 00:00
Published 20-02-2013 - 23:35
Last modified 28-08-2017 - 21:33
Back to Top