Back to search
CVE-2003-1570
Published: Mar 31, 2009
Modified: Aug 8, 2024
PUBLISHED
Description
The server in IBM Tivoli Storage Manager (TSM) 5.1.x, 5.2.x before 5.2.1.2, and 6.x before 6.1 does not require credentials to observe the server console in some circumstances, which allows remote authenticated administrators to monitor server operations by establishing a console mode session, related to "session exposure."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
tsm-consolemode-info-disclosure(49536)
vdb-entry
x_refsource_XF
ADV-2009-0881
vdb-entry
x_refsource_VUPEN
http://www-01.ibm.com/support/docview.wss?uid=swg21375360
x_refsource_CONFIRM
34285
vdb-entry
x_refsource_BID
1021947
vdb-entry
x_refsource_SECTRACK
IC37554
vendor-advisory
x_refsource_AIXAPAR
34498
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now