IBM » Tivoli Monitoring : Security Vulnerabilities, CVEs, (Memory corruption)
IBM Tivoli Monitoring V6 6.2.2.x could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free error. A remote attacker could exploit this vulnerability to execute arbitrary code on the system or cause the application to crash. IBM X-Force ID: 133243.
Max CVSS
8.0
EPSS Score
0.98%
Published
2017-12-13
Updated
2017-12-27
Buffer overflow in KDSMAIN in the Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Manager for Smart Business (formerly Tivoli Foundations Application Manager) 1.2.1 before 1.2.1.0-TIV-IAMSB-FP0004 and other products, allows remote attackers to cause a denial of service (segmentation fault) via a crafted http URL.
Max CVSS
5.0
EPSS Score
4.63%
Published
2013-06-21
Updated
2017-08-29
2 vulnerabilities found