Lucene search

[email protected]NVD:CVE-2011-0975

HistoryFeb 10, 2011 - 6:00 p.m.

CVE-2011-0975

2011-02-1018:00:59

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

8.2

Confidence

High

EPSS

0.215

Percentile

96.5%

JSON

Stack-based buffer overflow in BMC PATROL Agent Service Daemon for in Performance Analysis for Servers, Performance Assurance for Servers, and Performance Assurance for Virtual Servers 7.4.00 through 7.5.10; Performance Analyzer and Performance Predictor for Servers 7.4.00 through 7.5.10; and Capacity Management Essentials 1.2.00 (7.4.15) allows remote attackers to execute arbitrary code via a crafted length value in a BGS_MULTIPLE_READS command to TCP port 6768.

Affected configurations

Nvd

Node

bmcperformance_analysis_for_serversMatch7.4.00

bmcperformance_analysis_for_serversMatch7.4.10

bmcperformance_analysis_for_serversMatch7.4.15

bmcperformance_analysis_for_serversMatch7.5.00

bmcperformance_analysis_for_serversMatch7.5.10

Node

bmcperformance_assurance_for_serversMatch7.4.00

bmcperformance_assurance_for_serversMatch7.4.10

bmcperformance_assurance_for_serversMatch7.4.15

bmcperformance_assurance_for_serversMatch7.5.00

bmcperformance_assurance_for_serversMatch7.5.10

Node

bmcperformance_assurance_for_virtual_serversMatch7.4.00

bmcperformance_assurance_for_virtual_serversMatch7.4.10

bmcperformance_assurance_for_virtual_serversMatch7.4.15

bmcperformance_assurance_for_virtual_serversMatch7.5.00

bmcperformance_assurance_for_virtual_serversMatch7.5.10

Node

bmcperformance_analyzer_for_serversMatch7.4.00

bmcperformance_analyzer_for_serversMatch7.4.10

bmcperformance_analyzer_for_serversMatch7.4.15

bmcperformance_analyzer_for_serversMatch7.5.00

bmcperformance_analyzer_for_serversMatch7.5.10

Node

bmcperformance_predictor_for_serversMatch7.4.00

bmcperformance_predictor_for_serversMatch7.4.10

bmcperformance_predictor_for_serversMatch7.4.15

bmcperformance_predictor_for_serversMatch7.5.00

bmcperformance_predictor_for_serversMatch7.5.10

Node

bmccapacity_management_essentialsMatch1.2.00

VendorProductVersionCPE
bmcperformance_analysis_for_servers7.4.00cpe:2.3:a:bmc:performance_analysis_for_servers:7.4.00:*:*:*:*:*:*:*
bmcperformance_analysis_for_servers7.4.10cpe:2.3:a:bmc:performance_analysis_for_servers:7.4.10:*:*:*:*:*:*:*
bmcperformance_analysis_for_servers7.4.15cpe:2.3:a:bmc:performance_analysis_for_servers:7.4.15:*:*:*:*:*:*:*
bmcperformance_analysis_for_servers7.5.00cpe:2.3:a:bmc:performance_analysis_for_servers:7.5.00:*:*:*:*:*:*:*
bmcperformance_analysis_for_servers7.5.10cpe:2.3:a:bmc:performance_analysis_for_servers:7.5.10:*:*:*:*:*:*:*
bmcperformance_assurance_for_servers7.4.00cpe:2.3:a:bmc:performance_assurance_for_servers:7.4.00:*:*:*:*:*:*:*
bmcperformance_assurance_for_servers7.4.10cpe:2.3:a:bmc:performance_assurance_for_servers:7.4.10:*:*:*:*:*:*:*
bmcperformance_assurance_for_servers7.4.15cpe:2.3:a:bmc:performance_assurance_for_servers:7.4.15:*:*:*:*:*:*:*
bmcperformance_assurance_for_servers7.5.00cpe:2.3:a:bmc:performance_assurance_for_servers:7.5.00:*:*:*:*:*:*:*
bmcperformance_assurance_for_servers7.5.10cpe:2.3:a:bmc:performance_assurance_for_servers:7.5.10:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
bmc	performance_analysis_for_servers	7.4.00	cpe:2.3:a:bmc:performance_analysis_for_servers:7.4.00:::::::*
bmc	performance_analysis_for_servers	7.4.10	cpe:2.3:a:bmc:performance_analysis_for_servers:7.4.10:::::::*
bmc	performance_analysis_for_servers	7.4.15	cpe:2.3:a:bmc:performance_analysis_for_servers:7.4.15:::::::*
bmc	performance_analysis_for_servers	7.5.00	cpe:2.3:a:bmc:performance_analysis_for_servers:7.5.00:::::::*
bmc	performance_analysis_for_servers	7.5.10	cpe:2.3:a:bmc:performance_analysis_for_servers:7.5.10:::::::*
bmc	performance_assurance_for_servers	7.4.00	cpe:2.3:a:bmc:performance_assurance_for_servers:7.4.00:::::::*
bmc	performance_assurance_for_servers	7.4.10	cpe:2.3:a:bmc:performance_assurance_for_servers:7.4.10:::::::*
bmc	performance_assurance_for_servers	7.4.15	cpe:2.3:a:bmc:performance_assurance_for_servers:7.4.15:::::::*
bmc	performance_assurance_for_servers	7.5.00	cpe:2.3:a:bmc:performance_assurance_for_servers:7.5.00:::::::*
bmc	performance_assurance_for_servers	7.5.10	cpe:2.3:a:bmc:performance_assurance_for_servers:7.5.10:::::::*

Rows per page:

1-10 of 261

References

osvdb.org/70788

secunia.com/advisories/43177

securityreason.com/securityalert/8076

www.securityfocus.com/archive/1/516188/100/0/threaded

www.securityfocus.com/bid/46151

www.vupen.com/english/advisories/2011/0286

www.zerodayinitiative.com/advisories/ZDI-11-039

exchange.xforce.ibmcloud.com/vulnerabilities/65135

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

8.2

Confidence

High

EPSS

0.215

Percentile

96.5%

JSON

Related for NVD:CVE-2011-0975

cvelist1 prion1 cve1 checkpoint_advisories1