CVE-2011-0975

EPSS 25.99%
Veröffentlicht 10.02.2011 18:00:59
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Stack-based buffer overflow in BMC PATROL Agent Service Daemon for in Performance Analysis for Servers, Performance Assurance for Servers, and Performance Assurance for Virtual Servers 7.4.00 through 7.5.10; Performance Analyzer and Performance Predictor for Servers 7.4.00 through 7.5.10; and Capacity Management Essentials 1.2.00 (7.4.15) allows remote attackers to execute arbitrary code via a crafted length value in a BGS_MULTIPLE_READS command to TCP port 6768.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Bmc ≫ Performance Analysis For Servers Version7.4.00

Bmc ≫ Performance Analysis For Servers Version7.4.10

Bmc ≫ Performance Analysis For Servers Version7.4.15

Bmc ≫ Performance Analysis For Servers Version7.5.00

Bmc ≫ Performance Analysis For Servers Version7.5.10

Bmc ≫ Performance Assurance For Servers Version7.4.00

Bmc ≫ Performance Assurance For Servers Version7.4.10

Bmc ≫ Performance Assurance For Servers Version7.4.15

Bmc ≫ Performance Assurance For Servers Version7.5.00

Bmc ≫ Performance Assurance For Servers Version7.5.10

Bmc ≫ Performance Assurance For Virtual Servers Version7.4.00

Bmc ≫ Performance Assurance For Virtual Servers Version7.4.10

Bmc ≫ Performance Assurance For Virtual Servers Version7.4.15

Bmc ≫ Performance Assurance For Virtual Servers Version7.5.00

Bmc ≫ Performance Assurance For Virtual Servers Version7.5.10

Bmc ≫ Performance Analyzer For Servers Version7.4.00

Bmc ≫ Performance Analyzer For Servers Version7.4.10

Bmc ≫ Performance Analyzer For Servers Version7.4.15

Bmc ≫ Performance Analyzer For Servers Version7.5.00

Bmc ≫ Performance Analyzer For Servers Version7.5.10

Bmc ≫ Performance Predictor For Servers Version7.4.00

Bmc ≫ Performance Predictor For Servers Version7.4.10

Bmc ≫ Performance Predictor For Servers Version7.4.15

Bmc ≫ Performance Predictor For Servers Version7.5.00

Bmc ≫ Performance Predictor For Servers Version7.5.10

Bmc ≫ Capacity Management Essentials Version1.2.00

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	25.99%	0.958

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://osvdb.org/70788

http://secunia.com/advisories/43177

Vendor Advisory

http://securityreason.com/securityalert/8076

http://www.securityfocus.com/archive/1/516188/100/0/threaded

http://www.securityfocus.com/bid/46151

http://www.vupen.com/english/advisories/2011/0286

Vendor Advisory

http://www.zerodayinitiative.com/advisories/ZDI-11-039

https://exchange.xforce.ibmcloud.com/vulnerabilities/65135

https://nvd.nist.gov/vuln/detail/CVE-2011-0975

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-0975

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-0975

EUVD