5 matches found
IBM Tivoli Endpoint buffer overflows
Buffer overflow in lcfd.exe on TCP/9495 traffic parsing...
CVE-2011-1220
Stack-based buffer overflow in lcfd.exe in Tivoli Endpoint in IBM Tivoli Management Framework 3.7.1, 4.1, 4.1.1, and 4.3.1 allows remote authenticated users to execute arbitrary code via a long opts field...
CVE-2011-1220
CVE-2011-1220 : IBM Tivoli Endpoint Manager (Tivoli Management Framework) is affected via a stack-based buffer overflow in the lcfd.exe component when processing long POST query arguments. A remote authenticated attacker could execute arbitrary code. Affected versions include Tivoli Endpoint Mana...
ZDI-11-169: IBM Tivoli Endpoint lcfd.exe opts Argument Remote Code Execution Vulnerability
ZDI-11-169: IBM Tivoli Endpoint lcfd.exe opts Argument Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-169 May 31, 2011 -- CVE ID: CVE-2011-1220 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: IBM -- Affected Products: IBM Tivoli Endpoint --...
IBM Tivoli Endpoint lcfd.exe opts Argument Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Tivoli Endpoint. Authentication is required to exploit this vulnerability, however it is trivially achieved. The specific flaw exists within the lcfd.exe process which listens by default on TCP...