Intrusion Prevention

IBM.Tivoli.Monitoring.Express.Universal.Agent.Buffer.Overflow

Description

This indicates a possible exploit of a buffer overflow vulnerability in kde.dll in IBM Tivoli Monitoring Express.
This flaw is due to the application's failure to check the bounds of user supplied data before copying it into an insufficiently sized memory buffer.

Affected Products

IBM Tivoli Monitoring Express 6.1

Impact

The execution of arbitrary code on the system.

Recommended Actions

Upgrade to IBM Tivoli Monitoring version 6.1.0 Fix Pack 2 (6.1.0-TIV-ITM-FP0002) :
ftp://ftp.software.ibm.com/software/tivoli_support/patches/patches_6.1.0/6.1.0-TIV-ITM-FP0002/

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

ZDI-07-018

ID	14507
Created	May 15, 2007
Updated	Nov 15, 2021
CVE ID
Risk
Exploit Prediction Score	28.29%
Default Action	drop
Active
Affected OS	Windows, Linux, Other
Affected App	IBM
Profile Type	Buffer Errors

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

IBM.Tivoli.Monitoring.Express.Universal.Agent.Buffer.Overflow

Description

Affected Products

Impact

Recommended Actions

Coverage

References

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

IBM.Tivoli.Monitoring.Express.Universal.Agent.Buffer.Overflow

Description

Affected Products

Impact

Recommended Actions

Coverage

References

Threat Intelligence
Center