Stack-based buffer overflow vulnerability in the RunAndUploadFile method in the Isig.isigCtl.1 ActiveX control in IBM Tivoli Provisioning Manager Express for Software DistributionID: oval:org.secpod.oval:def:4752 | Date: (C)2012-03-20 (M)2021-07-09 |
Class: VULNERABILITY | Family: windows |
The host is installed with IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 and is prone to stack-based buffer overflow vulnerability. A flaw is present in the application, which is due to the improper bounds checking by the RunAndUploadFile() method. Successful exploitation allows remote attackers to execute arbitrary code.
Platform: |
Microsoft Windows 2000 |
Microsoft Windows Server 2003 |
Microsoft Windows XP |
Product: |
IBM Tivoli Provisioning Manager Express for Software Distribution |