Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1000

Malware in sbrugna...

7.5CVSS6.4AI score0.03336EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2000-1221

Malware in sbrugna...

9CVSS6.4AI score0.02078EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1001

Malware in sbrugna...

7.5CVSS6.4AI score0.03336EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-2171

Malware in sbrugna...

5CVSS6.4AI score0.01798EPSS
Exploits0References7
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 11:13 p.m.63 views

Security Bulletin: Tivoli Management Framework affected by vulnerabilities in OpenSSL versions prior to 1.0.0

Abstract OpenSSL versions prior to 1.0.0 do not follow best security practices and need to upgrade. On Linux Intel or z/OS platform, the components of Tivoli Management Framework 4.1.1 include the files in OpenSSL which version is prior to 1.0.0. Content VULNERABILITY DETAILS: CVE IDs:...

7.6CVSS7.1AI score0.48298EPSS
Exploits12Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 10:39 p.m.59 views

Security Bulletin: Tivoli Management Framework affected by vulnerabilities in IBM JRE (CVE-2012-4820, CVE-2012-4821, CVE-2012-4822, CVE-2012-4823)

Abstract These vulnerabilities are only applicable to Java deployments where untrusted code may be executed under a security manager e.g. Java applets running in a web browser. Tivoli Management Framework does not have functions that allow external attackers to upload and execute Java code...

4.3CVSS5.7AI score0.06903EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 9:6 p.m.39 views

Security Bulletin: Tivoli Management Framework affected by vulnerabilities in OpenSSL 1.0.1c

Abstract OpenSSL versions before 1.0.1d do not follow best security practices and need to upgrade. On Linux Intel or z/OS platform, the components of Tivoli Management Framework 4.1.1 may include the files in OpenSSL which version is 1.0.1c or lower. Content VULNERABILITY DETAILS: CVE ID:...

5CVSS6AI score0.39593EPSS
Exploits3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 2:51 p.m.59 views

Security Bulletin: Tivoli Management Framework is affected by the following OpenSSL vulnerabilities: CVE-2014-3508 CVE-2014-5139 CVE-2014-3509 CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3510 CVE-2014-3511 CVE-2014-3512 CVE-2014-3513 CVE-2014-3566 (POODLE Attack) CVE-2014-3567 CVE-2014-3568.

Summary Tivoli Management Framework is affected by the following OpenSSL vulnerabilities: CVE-2014-3508 CVE-2014-5139 CVE-2014-3509 CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3510 CVE-2014-3511 CVE-2014-3512 CVE-2014-3513 CVE-2014-3566 POODLE Attack CVE-2014-3567 CVE-2014-3568...

7.5CVSS0.9AI score0.99999EPSS
Exploits7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 2:42 p.m.49 views

Security Bulletin: Tivoli Management Framework is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 and possibly CVE-2014-0076.

Summary Security vulnerabilities have been discovered in OpenSSL that were reported on June 5, 2014 by the OpenSSL Project. Vulnerability Details CVE-ID: CVE-2014-0224 DESCRIPTION: OpenSSL is vulnerable to a man-in-the-middle attack, caused by the use of weak keying material in SSL/TLS clients an...

7.4CVSS0.7AI score0.99977EPSS
Exploits14Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 2:40 p.m.22 views

Security Bulletin: Tivoli Management Framework is affected by vulnerabilities in OpenSSL (CVE-2014-0160 and CVE-2014-0076)

Summary Security vulnerabilities have been discovered in OpenSSL. Vulnerability Details CVE-ID: CVE-2014-0160 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error in the TLS/DTLS heartbeat functionality. An attacker could exploit this vulnerabilit...

7.5CVSS0.3AI score0.99999EPSS
Exploits89Affected Software1
NVD
NVD
added 2011/06/02 8:55 p.m.20 views

CVE-2011-1220

Stack-based buffer overflow in lcfd.exe in Tivoli Endpoint in IBM Tivoli Management Framework 3.7.1, 4.1, 4.1.1, and 4.3.1 allows remote authenticated users to execute arbitrary code via a long opts field...

9CVSS7.3AI score0.62663EPSS
Exploits4References8
Prion
Prion
added 2011/06/02 8:55 p.m.15 views

Code injection

Tivoli Endpoint in IBM Tivoli Management Framework 3.7.1, 4.1, 4.1.1, and 4.3.1 has an unspecified "built-in account" that is "trivially" accessed, which makes it easier for remote attackers to send requests to restricted pages via a session on TCP port 9495, a different vulnerability than...

9CVSS6.5AI score0.62663EPSS
Exploits4References5Affected Software1
CVE
CVE
added 2011/06/02 8:0 p.m.142 views

CVE-2011-1220

CVE-2011-1220 : IBM Tivoli Endpoint Manager (Tivoli Management Framework) is affected via a stack-based buffer overflow in the lcfd.exe component when processing long POST query arguments. A remote authenticated attacker could execute arbitrary code. Affected versions include Tivoli Endpoint Mana...

9CVSS7.5AI score0.62663EPSS
Exploits4References8Affected Software1
Cvelist
Cvelist
added 2011/06/02 8:0 p.m.25 views

CVE-2011-1220

Stack-based buffer overflow in lcfd.exe in Tivoli Endpoint in IBM Tivoli Management Framework 3.7.1, 4.1, 4.1.1, and 4.3.1 allows remote authenticated users to execute arbitrary code via a long opts field...

7.3AI score0.62663EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2010/08/18 12:0 a.m.31 views

IBM Tivoli Management Framework Endpoint Web Detection

Tivoli Endpoint, a component of Tivoli Management Framework, is running on the remote host. The remote web application displays the status of this host's Tivoli Endpoint. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid48363; scriptversion"1.8"; scriptcvsdate"Date:...

5.5AI score
Exploits0References1
Cvelist
Cvelist
added 2006/03/15 5:0 p.m.17 views

CVE-2000-1239

The HTTP interface of Tivoli Lightweight Client Framework LCF in IBM Tivoli Management Framework 3.7.1 sets httpdisable to zero at install time, which allows remote authenticated users to bypass file permissions on Tivoli Endpoint Configuration data files via an unspecified manipulation of log...

6.1AI score0.02078EPSS
Exploits0References3
Cvelist
Cvelist
added 2005/07/11 4:0 a.m.16 views

CVE-2005-2170

The LCF component lcfd in IBM Tivoli Management Framework Endpoint allows remote attackers to cause a denial of service process exit and connection loss by connecting to LCF and ending the connection without sending any data...

6.4AI score0.01798EPSS
Exploits0References6
securityvulns
securityvulns
added 2005/07/09 12:0 a.m.28 views

[SA15953] IBM Tivoli Management Framework Endpoint Denial of Service

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2005/07/09 12:0 a.m.23 views

IBM Tivoli Management Framework DoS

lcfp process allows only 1 connection in 5 minutes before authentication. It makes it possible to deny access to service for 5 minutes...

4AI score
Exploits0References1Affected Software1
NVD
NVD
added 2002/10/04 4:0 a.m.13 views

CVE-2002-1011

Buffer overflow in web server for Tivoli Management Framework TMF Endpoint 3.6.x through 3.7.1, before Fixpack 2, allows remote attackers to cause a denial of service or execute arbitrary code via a long HTTP GET request...

7.5CVSS8AI score0.03336EPSS
Exploits0References5
Rows per page
Query Builder