Vulnerability Description
Stack-based buffer overflow in BMC PATROL Agent Service Daemon for in Performance Analysis for Servers, Performance Assurance for Servers, and Performance Assurance for Virtual Servers 7.4.00 through 7.5.10; Performance Analyzer and Performance Predictor for Servers 7.4.00 through 7.5.10; and Capacity Management Essentials 1.2.00 (7.4.15) allows remote attackers to execute arbitrary code via a crafted length value in a BGS_MULTIPLE_READS command to TCP port 6768.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bmc | Performance Analysis For Servers | 7.4.00 |
| Bmc | Performance Assurance For Servers | 7.4.00 |
| Bmc | Performance Assurance For Virtual Servers | 7.4.00 |
| Bmc | Performance Analyzer For Servers | 7.4.00 |
| Bmc | Performance Predictor For Servers | 7.4.00 |
| Bmc | Capacity Management Essentials | 1.2.00 |
Related Weaknesses (CWE)
References
- http://osvdb.org/70788
- http://secunia.com/advisories/43177Vendor Advisory
- http://securityreason.com/securityalert/8076
- http://www.securityfocus.com/archive/1/516188/100/0/threaded
- http://www.securityfocus.com/bid/46151
- http://www.vupen.com/english/advisories/2011/0286Vendor Advisory
- http://www.zerodayinitiative.com/advisories/ZDI-11-039
- https://exchange.xforce.ibmcloud.com/vulnerabilities/65135
- http://osvdb.org/70788
- http://secunia.com/advisories/43177Vendor Advisory
- http://securityreason.com/securityalert/8076
- http://www.securityfocus.com/archive/1/516188/100/0/threaded
- http://www.securityfocus.com/bid/46151
- http://www.vupen.com/english/advisories/2011/0286Vendor Advisory
- http://www.zerodayinitiative.com/advisories/ZDI-11-039
FAQ
What is CVE-2011-0975?
CVE-2011-0975 is a vulnerability with a CVSS score of 10.0 (HIGH). Stack-based buffer overflow in BMC PATROL Agent Service Daemon for in Performance Analysis for Servers, Performance Assurance for Servers, and Performance Assurance for Virtual Servers 7.4.00 through ...
How severe is CVE-2011-0975?
CVE-2011-0975 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-0975?
Check the references section above for vendor advisories and patch information. Affected products include: Bmc Performance Analysis For Servers, Bmc Performance Assurance For Servers, Bmc Performance Assurance For Virtual Servers, Bmc Performance Analyzer For Servers, Bmc Performance Predictor For Servers.