Lucene search

[email protected]CVE-2005-2170

HistoryJul 11, 2005 - 4:00 a.m.

CVE-2005-2170

2005-07-1104:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

ibm

tivoli

management

framework

endpoint

lcf

component

denial of service

cve-2005-2170

nvd

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.03 Low

EPSS

Percentile

90.9%

JSON

The LCF component (lcfd) in IBM Tivoli Management Framework Endpoint allows remote attackers to cause a denial of service (process exit and connection loss) by connecting to LCF and ending the connection without sending any data.

CPENameOperatorVersion
ibm:tivoli_management_frameworkibm tivoli management frameworkeq4.1.1

CPE	Name	Operator	Version
ibm:tivoli_management_framework	ibm tivoli management framework	eq	4.1.1

References

secunia.com/advisories/15953

securitytracker.com/id?1014424

www-1.ibm.com/support/entdocview.wss?uid=swg21210334

www.corsaire.com/advisories/c041127-001.txt

www.securityfocus.com/bid/14194

www.vupen.com/english/advisories/2005/1018

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.03 Low

EPSS

Percentile

90.9%

JSON

Related for CVE-2005-2170

cvelist1 ubuntucve1