IBM Tivoli Management Framework 'opts' Argument Stack Buffer Overflow Vulnerability
Gravité: : Critique
Identifiant(s) CVE: : CVE-2011-1220
Description
Stack-based buffer overflow in lcfd.exe in Tivoli Endpoint in IBM Tivoli Management Framework 3.7.1, 4.1, 4.1.1, and 4.3.1 allows remote authenticated users to execute arbitrary code via a long opts field.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1004681
Trend Micro Deep Security DPI Rule Name: 1004681 - IBM Tivoli Management Framework 'opts' Argument Stack Buffer Overflow Vulnerability
Affected software and version:
- ibm tivoli_management_framework 3.7.1
- ibm tivoli_management_framework 4.1
- ibm tivoli_management_framework 4.1.1
- ibm tivoli_management_framework 4.3.1