Unrated severityNVD Advisory· Published Mar 31, 2009· Updated Apr 23, 2026
CVE-2003-1570
CVE-2003-1570
Description
The server in IBM Tivoli Storage Manager (TSM) 5.1.x, 5.2.x before 5.2.1.2, and 6.x before 6.1 does not require credentials to observe the server console in some circumstances, which allows remote authenticated administrators to monitor server operations by establishing a console mode session, related to "session exposure."
Affected products
11cpe:2.3:a:ibm:tivoli_storage_manager:5.1.0:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:a:ibm:tivoli_storage_manager:5.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:5.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:5.1.10:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:5.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:5.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:5.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:5.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:5.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:5.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:5.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:6.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- secunia.com/advisories/34498nvdVendor Advisory
- www-1.ibm.com/support/docview.wssnvdVendor Advisory
- www.vupen.com/english/advisories/2009/0881nvdVendor Advisory
- securitytracker.com/idnvd
- www-01.ibm.com/support/docview.wssnvd
- www.securityfocus.com/bid/34285nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/49536nvd
News mentions
0No linked articles in our index yet.