virus logo Intrusion Prevention

IBM.i2.Analyst.Notebook.CVE-2020-4554.Memory.Corruption

description-logoDescription

This indicates an attack attempt against a Memory Corruption vulnerability in the IBM i2 Analysts' Notebook.
The vulnerability is caused by an error when the vulnerable software handles a specially-crafted file. An attacker can persuade a victim to open the specially-crafted file and execute arbitrary code within the context of the application.

affected-products-logoAffected Products

IBM i2 Analyst's Notebook 9.2.1
IBM i2 Analyst's Notebook 9.2.2

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the latest update from the vendor.
https://www.ibm.com/support/pages/node/6254694

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2020-08-18 15.907
Modified
 Default_action:pass:drop
2020-08-05 15.900
New

References

https://www.ibm.com/support/pages/node/6254694
ID 49398
Created Aug 04, 2020
Updated Aug 23, 2021
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Exploit Prediction Score 0.07%
Default Action drop
Active
Affected OS Windows
Affected App IBM
Profile Type BufferErrors