CVE-2013-0541 — Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM Websphere Application Server

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources

Severity

1.9LOWNVD

EPSS

0.1%

top 84.71%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Websphere Application Server

Timeline

PublishedApr 24

Latest updateMay 5

Description

Buffer overflow in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before 7.0.0.29, 8.0 before 8.0.0.6, and 8.5 before 8.5.0.2 on Windows, when a localOS registry is used in conjunction with WebSphere Identity Manger (WIM), allows local users to cause a denial of service (daemon crash) via unspecified vectors.

CVSS vector

AV:L/AC:M/C:N/I:N/A:PExploitability: 3.4 | Impact: 2.9

Affected Packages1 packages

▶NVDibm/websphere_application_server53 versions+52

🔴Vulnerability Details

GHSA

GHSA-cgxx-r96w-2g46: Buffer overflow in IBM WebSphere Application Server (WAS) 6↗2022-05-05

▶

CVEList

CVE-2013-0541: Buffer overflow in IBM WebSphere Application Server (WAS) 6↗2013-04-24

▶