CVSS: 7.5EPSS: 2%CPEs: 23EXPL: 0CVE-2013-2960
https://notcve.org/view.php?id=CVE-2013-2960
21 Jun 2013 — Buffer overflow in KDSMAIN in the Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Manager for Smart Business (formerly Tivoli Foundations Application Manager) 1.2.1 before 1.2.1.0-TIV-IAMSB-FP0004 and other products, allows remote attackers to cause a denial of service (segmentation fault) via a crafted http URL. Desbordamiento de búfer en KDSMAIN en el componente Basic Services en IBM Tivoli Mo... • http://www-01.ibm.com/support/docview.wss?uid=swg1IV27192 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.2EPSS: 0%CPEs: 23EXPL: 0CVE-2013-2961
https://notcve.org/view.php?id=CVE-2013-2961
21 Jun 2013 — The internal web server in the Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Manager for Smart Business (formerly Tivoli Foundations Application Manager) 1.2.1 before 1.2.1.0-TIV-IAMSB-FP0004 and other products, allows remote attackers to perform unspecified redirection of HTTP requests, and bypass the proxy-server configuration, via crafted HTTP traffic. El servidor web interno en el componen... • http://www-01.ibm.com/support/docview.wss?uid=swg1IV27192 • CWE-20: Improper Input Validation •
CVSS: 6.1EPSS: 0%CPEs: 23EXPL: 0CVE-2013-0548
https://notcve.org/view.php?id=CVE-2013-0548
21 Jun 2013 — Multiple cross-site scripting (XSS) vulnerabilities in the Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Manager for Smart Business (formerly Tivoli Foundations Application Manager) 1.2.1 before 1.2.1.0-TIV-IAMSB-FP0004 and other products, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Múltiples vulnerabilidades de ejecución de secuencias de comandos en ... • http://www-01.ibm.com/support/docview.wss?uid=swg1IV27192 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 1%CPEs: 23EXPL: 0CVE-2013-0551
https://notcve.org/view.php?id=CVE-2013-0551
21 Jun 2013 — The Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Manager for Smart Business (formerly Tivoli Foundations Application Manager) 1.2.1 before 1.2.1.0-TIV-IAMSB-FP0004 and other products, allows remote attackers to cause a denial of service (abend) via a crafted URL. El componente Basic Services en IBM Tivoli Monitoring (ITM) v6.2.0 hasta FP3, v6.2.1 hasta FP4, v6.2.2 hasta FP9, y v6.2.3 hasta FP... • http://www-01.ibm.com/support/docview.wss?uid=swg1IV27192 • CWE-20: Improper Input Validation •