CVE Vulnerabilities

CVE-2014-6185

Published: Feb 13, 2015 | Modified: Sep 08, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

dsmtca in the client in IBM Tivoli Storage Manager (TSM) 6.3 before 6.3.2.3, 6.4 before 6.4.2.2, and 7.1 before 7.1.1.3 does not properly restrict shared-library loading, which allows local users to gain privileges via a crafted DSO file.

Affected Software

Name Vendor Start Version End Version
Tivoli_storage_manager Ibm 6.3.2.1 6.3.2.1
Tivoli_storage_manager Ibm 6.4.2 6.4.2
Tivoli_storage_manager Ibm 7.1.0.1 7.1.0.1
Tivoli_storage_manager Ibm 6.4.0.4 6.4.0.4
Tivoli_storage_manager Ibm 7.1.0.2 7.1.0.2
Tivoli_storage_manager Ibm 6.4.0.7 6.4.0.7
Tivoli_storage_manager Ibm 6.3.0.15 6.3.0.15
Tivoli_storage_manager Ibm 6.3.1.2 6.3.1.2
Tivoli_storage_manager Ibm 7.1.0 7.1.0
Tivoli_storage_manager Ibm 6.3.0 6.3.0
Tivoli_storage_manager Ibm 7.1.0.3 7.1.0.3
Tivoli_storage_manager Ibm 7.1.1.1 7.1.1.1
Tivoli_storage_manager Ibm 6.3.0.5 6.3.0.5
Tivoli_storage_manager Ibm 7.1.1 7.1.1
Tivoli_storage_manager Ibm 6.4.0.5 6.4.0.5
Tivoli_storage_manager Ibm 6.4.0.1 6.4.0.1
Tivoli_storage_manager Ibm 6.4.1.7 6.4.1.7
Tivoli_storage_manager Ibm 6.3.2.2 6.3.2.2
Tivoli_storage_manager Ibm 6.4.0 6.4.0
Tivoli_storage_manager Ibm 6.4.2.1 6.4.2.1
Tivoli_storage_manager Ibm 6.4.1.3 6.4.1.3
Tivoli_storage_manager Ibm 6.4.1 6.4.1

References