PT-2016-5292 · Ibm · Ibm Tivoli Monitoring

Mathijs Schmittmann

·

Publicado

2016-12-01

·

Atualizado

2016-12-01

·

CVE-2016-2946

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions IBM Tivoli Monitoring (ITM) versions 6.2.2 through 6.2.2 FP8 IBM Tivoli Monitoring (ITM) versions 6.2.3 through 6.2.3 FP4 IBM Tivoli Monitoring (ITM) versions 6.3.0 through 6.3.0 FP1
Description A stack-based buffer overflow issue exists in the ax Shared Libraries component of the Agent in IBM Tivoli Monitoring. This issue allows local users to potentially gain privileges via unspecified vectors.
Recommendations For IBM Tivoli Monitoring (ITM) versions 6.2.2 through 6.2.2 FP8, update to FP9 or later. For IBM Tivoli Monitoring (ITM) versions 6.2.3 through 6.2.3 FP4, update to FP5 or later. For IBM Tivoli Monitoring (ITM) versions 6.3.0 through 6.3.0 FP1, update to FP2 or later.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2016-2946

Produtos afetados

Ibm Tivoli Monitoring