CVE-2013-2960
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Buffer overflow in KDSMAIN in the Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Manager for Smart Business (formerly Tivoli Foundations Application Manager) 1.2.1 before 1.2.1.0-TIV-IAMSB-FP0004 and other products, allows remote attackers to cause a denial of service (segmentation fault) via a crafted http URL.
Desbordamiento de búfer en KDSMAIN en el componente Basic Services en IBM Tivoli Monitoring (ITM) v6.2.0 hasta FP3, v6.2.1 hasta FP4, v6.2.2 hasta FP9, y v6.2.3 anterior a FP3, como se utilizaba en IBM Application Manager para Smart Business (Tivoli Foundations Application Manager) v1.2.1 anterior a v1.2.1.0-TIV-IAMSB-FP0004 y otros productos, permite a atacantes remotos causar una denegación de servicio mediante una URL especialmente diseñada.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2013-04-12 CVE Reserved
- 2013-06-21 CVE Published
- 2024-08-06 CVE Updated
- 2024-12-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://www-01.ibm.com/support/docview.wss?uid=swg21635080 | X_refsource_confirm | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/83724 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www-01.ibm.com/support/docview.wss?uid=swg1IV27192 | 2017-08-29 | |
| http://www-01.ibm.com/support/docview.wss?uid=swg1IV30187 | 2017-08-29 | |
| http://www-01.ibm.com/support/docview.wss?uid=swg1IV40115 | 2017-08-29 | |
| http://www-01.ibm.com/support/docview.wss?uid=swg1IV40116 | 2017-08-29 | |
| http://www-01.ibm.com/support/docview.wss?uid=swg21640752 | 2017-08-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.0 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.0.1 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.0.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.0.2 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.0.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.0.3 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.0.3" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.1 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.1.1 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.1.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.1.2 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.1.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.1.3 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.1.3" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.1.4 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.1.4" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.1 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.2 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.3 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.3" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.4 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.4" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.5 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.5" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.6 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.6" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.7 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.7" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.8 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.8" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.9 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.9" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.3 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.3" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.3.1 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.3.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.3.2 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.3.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Application Manager For Smart Business Search vendor "Ibm" for product "Application Manager For Smart Business" | 1.2.1 Search vendor "Ibm" for product "Application Manager For Smart Business" and version "1.2.1" | - |
Affected
| ||||||