PT-2009-4019 · Ibm · Ibm Tivoli Storage Manager
Published
2009-05-05
·
Updated
2017-08-17
·
CVE-2009-1522
CVSS v2.0
7.1
High
| Vector | AV:N/AC:M/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
IBM Tivoli Storage Manager (TSM) client versions 5.5.0.0 through 5.5.1.17
Description:
The issue allows remote attackers to conduct man-in-the-middle attacks and read arbitrary files when SSL is used. The exact vectors of the attack are not specified.
Recommendations:
For versions 5.5.0.0 through 5.5.1.17, consider disabling SSL usage until a patch is available. Restrict access to sensitive files to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ibm Tivoli Storage Manager