CVE-2013-0509

EUVD-2013-0520
Buffer overflow in the Transaction MIB agent in IBM Tivoli Netcool System Service Monitors (SSM) and Application Service Monitors (ASM) 4.0.0 before FP14 allows remote attackers to execute arbitrary code via a SQL transaction with a long table name that is not properly handled by a packet decoder.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.6 UNKNOWN
NETWORK
HIGH
AV:N/AC:H/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 94%
Affected Products (NVD)
VendorProductVersion
ibmtivoli_netcool_application_service_monitors
4.0.0
ibmtivoli_netcool_system_service_monitors
4.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21638183
https://exchange.xforce.ibmcloud.com/vulnerabilities/82334
http://www-01.ibm.com/support/docview.wss?uid=swg21638183
https://exchange.xforce.ibmcloud.com/vulnerabilities/82334