CVE-2011-0310Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM Websphere MQ

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer6 documents5 sources
Severity
6.8MEDIUMNVD
EPSS
4.4%
top 11.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Websphere MQ
Timeline
PublishedJan 13
Latest updateMay 17

Description

Buffer overflow in IBM WebSphere MQ 7.0 before 7.0.1.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted header field in a message.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

NVDibm/websphere_mq7 versions+6

🔴Vulnerability Details

2
GHSA
GHSA-j497-52cv-pcp6: Buffer overflow in IBM WebSphere MQ 72022-05-17
CVEList
CVE-2011-0310: Buffer overflow in IBM WebSphere MQ 72011-01-13

📋Vendor Advisories

1
Red Hat
nfs-utils: mount.nfs fails to anticipate RLIMIT_FSIZE2011-04-19

💬Community

2
Bugzilla
CVE-2011-0057 Mozilla use-after-free error using Web Workers (MFSA 2011-06)2011-02-04
Bugzilla
CVE-2011-0054 Mozilla Buffer overflow in JavaScript upvarMap (MFSA 2011-04)2011-02-04
CVE-2011-0310 — IBM Websphere MQ vulnerability | cvebase