1. Home
  2. CVE Database
  3. CVE-2013-2960
MEDIUM · 5.0

CVE-2013-2960

Buffer overflow in KDSMAIN in the Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Mana...

Vulnerability Description

Buffer overflow in KDSMAIN in the Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Manager for Smart Business (formerly Tivoli Foundations Application Manager) 1.2.1 before 1.2.1.0-TIV-IAMSB-FP0004 and other products, allows remote attackers to cause a denial of service (segmentation fault) via a crafted http URL.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:N/A:P
Confidentiality
NONE
Integrity
NONE
Availability
PARTIAL

Affected Products

VendorProductVersions
IbmTivoli Monitoring6.2.0
IbmApplication Manager For Smart Business1.2.1

Related Weaknesses (CWE)

CWE-119

References

FAQ

What is CVE-2013-2960?

CVE-2013-2960 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Buffer overflow in KDSMAIN in the Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Mana...

How severe is CVE-2013-2960?

CVE-2013-2960 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-2960?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Tivoli Monitoring, Ibm Application Manager For Smart Business.