What is CVE-2011-1220?

CVE-2011-1220 is a vulnerability in Ibm Tivoli_management_framework, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2011-06-02.

Is CVE-2011-1220 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Ibm Tivoli_management_framework

CVE-2011-1220

Stack-based buffer overflow in lcfd.exe in Tivoli Endpoint in IBM Tivoli Management Framework 3.7.1, 4.1, 4.1.1, and 4.3.1 allows remote authenticated users to execute arbitrary code via a long opts field.

Vulnerability class: Buffer Overflow

EPSS: 0.642 (98.5th percentile) — read the EPSS interpretation.

Affected products

Ibm Tivoli_management_framework — versions 3.7.1, 4.1, 4.1.1
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

rapid7/metasploit-framework

References

tivoli-endpoint-lcfd-bo(67631) (vdb-entry, x_refsource_XF)
44628 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
8268 (x_refsource_SREASON, third-party-advisory)
1025581 (vdb-entry, x_refsource_SECTRACK)
cve@mitre.org (x_refsource_CONFIRM)
IZ90238 (vendor-advisory, x_refsource_AIXAPAR)
cve@mitre.org (x_refsource_MISC)
20110531 ZDI-11-169: IBM Tivoli Endpoint lcfd.exe opts Argument Remote Code Execution Vulnerability (mailing-list, x_refsource_BUGTRAQ)

Frequently asked questions

What is CVE-2011-1220?: CVE-2011-1220 is a vulnerability in Ibm Tivoli_management_framework, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2011-06-02.
Is CVE-2011-1220 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.