APP: IBM Tivoli Management Framework Overflow
This signature detects attempts to exploit a known flaw in IBM Tivoli Management Framework. An attacker can send an overly long parameter, which could result in arbitrary code execution or a denial of service.
Extended Description
IBM Tivoli Management Framework is prone to a remote stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Successfully exploiting this issue may allow remote attackers to execute arbitrary code. Failed attacks will cause denial-of-service conditions. IBM Tivoli Management Framework 4.1, 4.1.1, and 4.3.1 are vulnerable.
Affected Products
Ibm tivoli_management_framework
Short Name
APP:IBM:TIVOLI-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
CVE-2011-1220 Framework IBM Management Overflow Tivoli bid:48049
Release Date
11/02/2011
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Ibm
CVSS Score
9.0