10

CVE-2007-2137

Heap-based buffer overflow in kde.dll in IBM Tivoli Monitoring Express 6.1.0 before Fix Pack 2, as used in Tivoli Universal Agent, Windows OS Monitoring agent, and Enterprise Portal Server, allows remote attackers to execute arbitrary code by sending a long string to a certain TCP port.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmTivoli Monitoring Express Version6.1.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 7.74% 0.939
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/24938
http://securityreason.com/securityalert/2597
http://www-1.ibm.com/support/docview.wss?uid=swg24012341
Patch
http://www.securityfocus.com/archive/1/466216/100/0/threaded
http://www.securityfocus.com/bid/23558
Patch
http://www.securitytracker.com/id?1017933
http://www.vupen.com/english/advisories/2007/1456
http://www.zerodayinitiative.com/advisories/ZDI-07-018.html
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/33746