Lucene search

[email protected]NVD:CVE-2013-2960

HistoryJun 21, 2013 - 5:55 p.m.

CVE-2013-2960

2013-06-2117:55:01

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.046

Percentile

92.6%

JSON

Buffer overflow in KDSMAIN in the Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Manager for Smart Business (formerly Tivoli Foundations Application Manager) 1.2.1 before 1.2.1.0-TIV-IAMSB-FP0004 and other products, allows remote attackers to cause a denial of service (segmentation fault) via a crafted http URL.

Affected configurations

Nvd

Node

ibmtivoli_monitoringMatch6.2.0

ibmtivoli_monitoringMatch6.2.0.1

ibmtivoli_monitoringMatch6.2.0.2

ibmtivoli_monitoringMatch6.2.0.3

Node

ibmtivoli_monitoringMatch6.2.1

ibmtivoli_monitoringMatch6.2.1.1

ibmtivoli_monitoringMatch6.2.1.2

ibmtivoli_monitoringMatch6.2.1.3

ibmtivoli_monitoringMatch6.2.1.4

Node

ibmtivoli_monitoringMatch6.2.2

ibmtivoli_monitoringMatch6.2.2.1

ibmtivoli_monitoringMatch6.2.2.2

ibmtivoli_monitoringMatch6.2.2.3

ibmtivoli_monitoringMatch6.2.2.4

ibmtivoli_monitoringMatch6.2.2.5

ibmtivoli_monitoringMatch6.2.2.6

ibmtivoli_monitoringMatch6.2.2.7

ibmtivoli_monitoringMatch6.2.2.8

ibmtivoli_monitoringMatch6.2.2.9

Node

ibmtivoli_monitoringMatch6.2.3

ibmtivoli_monitoringMatch6.2.3.1

ibmtivoli_monitoringMatch6.2.3.2

Node

ibmapplication_manager_for_smart_businessMatch1.2.1

VendorProductVersionCPE
ibmtivoli_monitoring6.2.0cpe:2.3:a:ibm:tivoli_monitoring:6.2.0:*:*:*:*:*:*:*
ibmtivoli_monitoring6.2.0.1cpe:2.3:a:ibm:tivoli_monitoring:6.2.0.1:*:*:*:*:*:*:*
ibmtivoli_monitoring6.2.0.2cpe:2.3:a:ibm:tivoli_monitoring:6.2.0.2:*:*:*:*:*:*:*
ibmtivoli_monitoring6.2.0.3cpe:2.3:a:ibm:tivoli_monitoring:6.2.0.3:*:*:*:*:*:*:*
ibmtivoli_monitoring6.2.1cpe:2.3:a:ibm:tivoli_monitoring:6.2.1:*:*:*:*:*:*:*
ibmtivoli_monitoring6.2.1.1cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.1:*:*:*:*:*:*:*
ibmtivoli_monitoring6.2.1.2cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.2:*:*:*:*:*:*:*
ibmtivoli_monitoring6.2.1.3cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.3:*:*:*:*:*:*:*
ibmtivoli_monitoring6.2.1.4cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.4:*:*:*:*:*:*:*
ibmtivoli_monitoring6.2.2cpe:2.3:a:ibm:tivoli_monitoring:6.2.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	tivoli_monitoring	6.2.0	cpe:2.3:a:ibm:tivoli_monitoring:6.2.0:::::::*
ibm	tivoli_monitoring	6.2.0.1	cpe:2.3:a:ibm:tivoli_monitoring:6.2.0.1:::::::*
ibm	tivoli_monitoring	6.2.0.2	cpe:2.3:a:ibm:tivoli_monitoring:6.2.0.2:::::::*
ibm	tivoli_monitoring	6.2.0.3	cpe:2.3:a:ibm:tivoli_monitoring:6.2.0.3:::::::*
ibm	tivoli_monitoring	6.2.1	cpe:2.3:a:ibm:tivoli_monitoring:6.2.1:::::::*
ibm	tivoli_monitoring	6.2.1.1	cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.1:::::::*
ibm	tivoli_monitoring	6.2.1.2	cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.2:::::::*
ibm	tivoli_monitoring	6.2.1.3	cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.3:::::::*
ibm	tivoli_monitoring	6.2.1.4	cpe:2.3:a:ibm:tivoli_monitoring:6.2.1.4:::::::*
ibm	tivoli_monitoring	6.2.2	cpe:2.3:a:ibm:tivoli_monitoring:6.2.2:::::::*

Rows per page:

1-10 of 231

References

www-01.ibm.com/support/docview.wss?uid=swg1IV27192

www-01.ibm.com/support/docview.wss?uid=swg1IV30187

www-01.ibm.com/support/docview.wss?uid=swg1IV40115

www-01.ibm.com/support/docview.wss?uid=swg1IV40116

www-01.ibm.com/support/docview.wss?uid=swg21635080

www-01.ibm.com/support/docview.wss?uid=swg21640752

exchange.xforce.ibmcloud.com/vulnerabilities/83724

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.046

Percentile

92.6%

JSON

Related for NVD:CVE-2013-2960

prion1 cvelist1 cve1 ibm2