CVE-2012-0202 : Multiple stack-based buffer overflows in tm1admsd.exe in the Admin Server in IBM

Multiple stack-based buffer overflows in tm1admsd.exe in the Admin Server in IBM Cognos TM1 9.4.x and 9.5.x before 9.5.2 FP2 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via crafted data.

Published 2012-05-04 16:55:01

Updated 2017-08-29 01:30:52

Source IBM Corporation

View at NVD, CVE.org

Vulnerability category: OverflowExecute codeDenial of service

Products affected by CVE-2012-0202

IBM » Cognos Tm1 » Version: 9.4.1.3
cpe:2.3:a:ibm:cognos_tm1:9.4.1.3:*:*:*:*:*:*:*
Matching versions
IBM » Cognos Tm1 » Version: 9.5.1
cpe:2.3:a:ibm:cognos_tm1:9.5.1:*:*:*:*:*:*:*
Matching versions
IBM » Cognos Tm1 » Version: 9.4.1
cpe:2.3:a:ibm:cognos_tm1:9.4.1:*:*:*:*:*:*:*
Matching versions
IBM » Cognos Tm1 » Version: 9.5.2
cpe:2.3:a:ibm:cognos_tm1:9.5.2:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2012-0202

EPSS FAQ

74.11%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 99 %

Percentile, the proportion of vulnerabilities that are scored at or less

Metasploit modules for CVE-2012-0202

IBM Cognos tm1admsd.exe Overflow

Disclosure Date: 2012-04-02

First seen: 2020-04-26

exploit/windows/misc/ibm_cognos_tm1admsd_bof

This module exploits a stack buffer overflow in IBM Cognos Analytic Server Admin service. The vulnerability exists in the tm1admsd.exe component, due to a dangerous copy of user controlled data to the stack, via memcpy, without validating the supplied length and da

More information

CVSS scores for CVE-2012-0202

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2012-0202

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-0202

http://www-01.ibm.com/support/docview.wss?uid=swg21590314

IBM Security Bulletin: IBM Cognos TM1 Admin Server vulnerabilities (CVE-2012-0202)
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg24032166

IBM Cognos TM1 9.5.2 Interim Fix 4
http://www-01.ibm.com/support/docview.wss?uid=swg24032164

IBM notice: The page you requested cannot be displayed
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/73182

IBM Cognos tm1admsd.exe multiple buffer overflow CVE-2012-0202 Vulnerability Report
http://www-01.ibm.com/support/docview.wss?uid=swg24032165

IBM Cognos TM1 9.5.1 Interim Fix 3
Vendor Advisory

Jump to