5 matches found
IBM Tivoli Endpoint Manager POST Query Buffer Overflow (CVE-2011-1220)
A stack based buffer overflow in IBM Tivoli Endpoint...
IBM Tivoli Endpoint Manager POST Query Buffer Overflow
Exploit for windows platform in category remote exploits $Id: ibmtivoliendpointbof.rb 12925 2011-06-12 00:04:55Z bannedit $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more...
IBM Tivoli Endpoint Manager POST Query Buffer Overflow
This module exploits a stack based buffer overflow in the way IBM Tivoli Endpoint Manager versions 3.7.1, 4.1, 4.1.1, 4.3.1 handles long POST query arguments. This issue can be triggered by sending a specially crafted HTTP POST request to the service lcfd.exe listening on TCP port 9495. To trigge...
CVE-2011-1220
CVE-2011-1220 : IBM Tivoli Endpoint Manager (Tivoli Management Framework) is affected via a stack-based buffer overflow in the lcfd.exe component when processing long POST query arguments. A remote authenticated attacker could execute arbitrary code. Affected versions include Tivoli Endpoint Mana...
ZDI-11-169: IBM Tivoli Endpoint lcfd.exe opts Argument Remote Code Execution Vulnerability
ZDI-11-169: IBM Tivoli Endpoint lcfd.exe opts Argument Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-169 May 31, 2011 -- CVE ID: CVE-2011-1220 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: IBM -- Affected Products: IBM Tivoli Endpoint --...