CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-0198

Stack-based buffer overflow in the RunAndUploadFile method in the Isig.isigCtl.1 ActiveX control in IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 allows remote attackers to execute arbitrary code via vectors related to an Asset Information file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.647

EPSS Ranking 98.4%

CVSS Severity

CVSS v2 Score 9.3

References

http://www.zerodayinitiative.com/advisories/ZDI-12-040/
https://exchange.xforce.ibmcloud.com/vulnerabilities/73033
http://www.zerodayinitiative.com/advisories/ZDI-12-040/
https://exchange.xforce.ibmcloud.com/vulnerabilities/73033

Products affected by CVE-2012-0198

Ibm » Tivoli Provisioning Manager Express For Software Distribution » Version: 4.1.1

cpe:2.3:a:ibm:tivoli_provisioning_manager_express_for_software_distribution:4.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-0198

Products

Pricing

Contact Us