Trend Micro Security

IBM Tivoli Management Framework 'opts' Argument Stack Buffer Overflow Vulnerability

  危険度: : 緊急
  CVE識別番号: CVE-2011-1220

  概要

Stack-based buffer overflow in lcfd.exe in Tivoli Endpoint in IBM Tivoli Management Framework 3.7.1, 4.1, 4.1.1, and 4.3.1 allows remote authenticated users to execute arbitrary code via a long opts field.

  トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1004681
  Trend Micro Deep Security DPI Rule Name: 1004681 - IBM Tivoli Management Framework 'opts' Argument Stack Buffer Overflow Vulnerability

  影響を受けるソフトウェア

  • ibm tivoli_management_framework 3.7.1
  • ibm tivoli_management_framework 4.1
  • ibm tivoli_management_framework 4.1.1
  • ibm tivoli_management_framework 4.3.1