CVE-2012-0198

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Provisioning Manager Express For Software Distribution
Vendor: CVE Published:; 6 March 2012

Summary

Stack-based buffer overflow in the RunAndUploadFile method in the Isig.isigCtl.1 ActiveX control in IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 allows remote attackers to execute arbitrary code via vectors related to an Asset Information file.

References

http://www.zerodayinitiative.com/advisories/ZDI-12-040/

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/73033

vdb-entryx_refsource_XF

EPSS Score

96% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 6, 2012
Vulnerability Reserved
Dec 14, 2011