CVE-2007-4348

NONECVSS 0.0

0.0

Cross-site scripting (XSS) vulnerability in the CAD service in IBM Tivoli Storage Manager (TSM) Client 5.3.5.3 and 5.4.1.2 for Windows allows remote attackers to inject arbitrary web script or HTML via HTTP requests to port 1581, which generate log entries in a dsmerror.log file that is accessible through a certain web interface.

🔗 References (12)

PSIRT-CNA@flexerasoftwarehttp://secunia.com/advisories/27013
PSIRT-CNA@flexerasoftwarehttp://secunia.com/secunia_research/2007-75/advisory
PSIRT-CNA@flexerasoftwarehttp://www.securityfocus.com/bid/26221
PSIRT-CNA@flexerasoftwarehttp://www.securitytracker.com/id?1018868
PSIRT-CNA@flexerasoftwarehttp://www.vupen.com/english/advisories/2007/3635
PSIRT-CNA@flexerasoftwarehttps://exchange.xforce.ibmcloud.com/vulnerabilities/38125
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/27013
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/secunia_research/2007-75/advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/26221
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1018868
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2007/3635
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/38125

Is Your Infrastructure Affected by CVE-2007-4348?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-4348

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-4348?