VYPR
← All advisories
Unrated severityNVD Advisory· Published Sep 28, 2007· Updated Apr 23, 2026

CVE-2007-4880

CVE-2007-4880

Description

Buffer overflow in the Client Acceptor Daemon (CAD), dsmcad.exe, in certain IBM Tivoli Storage Manager (TSM) clients 5.1 before 5.1.8.1, 5.2 before 5.2.5.2, 5.3 before 5.3.5.3, and 5.4 before 5.4.1.2 allows remote attackers to execute arbitrary code via crafted HTTP headers, aka IC52905.

Affected products

8
  • IBM/Tivoli Storage Manager Client8 versions
    cpe:2.3:a:ibm:tivoli_storage_manager_client:5.1:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:ibm:tivoli_storage_manager_client:5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_storage_manager_client:5.1.8.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_storage_manager_client:5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_storage_manager_client:5.2.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_storage_manager_client:5.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_storage_manager_client:5.3.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_storage_manager_client:5.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_storage_manager_client:5.4.1.1:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

11

News mentions

0

No linked articles in our index yet.