CVE-2015-4951

Client Acceptor Daemon (CAD) in the client in IBM Spectrum Protect (formerly Tivoli Storage Manager) 5.5 and 6.x before 6.3.2.5, 6.4 before 6.4.3.1, and 7.1 before 7.1.3 allows remote attackers to cause a denial of service (daemon crash) via a crafted Web client URL.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:tivoli_storage_manager:5.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_storage_manager:6.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_storage_manager:6.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_storage_manager:6.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_storage_manager:6.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_storage_manager:7.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2016-01-20 05:59

Updated : 2024-02-04 18:53


NVD link : CVE-2015-4951

Mitre link : CVE-2015-4951

CVE.ORG link : CVE-2015-4951


JSON object : View

Products Affected

ibm

  • tivoli_storage_manager
CWE
CWE-20

Improper Input Validation