Vulnerabilities > IBM > Tivoli Storage Manager > 6.3.0.15

DATE CVE VULNERABILITY TITLE RISK
2015-02-22 CVE-2014-6184 Out-of-bounds Write vulnerability in IBM Tivoli Storage Manager
Stack-based buffer overflow in dsmtca in the client in IBM Tivoli Storage Manager (TSM) 5.4 through 5.4.3.6, 5.5 through 5.5.4.3, 6.1 through 6.1.5.6, 6.2 before 6.2.5.4, and 6.3 before 6.3.2.3 on UNIX, Linux, and OS X allows local users to gain privileges via unspecified vectors.
local
low complexity
ibm CWE-787
7.2
7.2
2015-02-13 CVE-2014-6185 Permissions, Privileges, and Access Controls vulnerability in IBM Tivoli Storage Manager
dsmtca in the client in IBM Tivoli Storage Manager (TSM) 6.3 before 6.3.2.3, 6.4 before 6.4.2.2, and 7.1 before 7.1.1.3 does not properly restrict shared-library loading, which allows local users to gain privileges via a crafted DSO file.
local
low complexity
ibm CWE-264
7.2
7.2
2014-08-26 CVE-2013-6335 Improper Preservation of Permissions vulnerability in IBM Tivoli Storage Manager
The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 5.x and 6.x before 6.2.5.3, 6.3.x before 6.3.2, 6.4.x before 6.4.2, and 7.1.x before 7.1.0.3 on Linux and AIX, and 5.x and 6.x before 6.1.5.6 on Solaris and HP-UX, does not preserve file permissions across backup and restore operations, which allows local users to bypass intended access restrictions via standard filesystem operations. 		3.3
3.3