CVE-2016-2946

CWE-119Buffer Overflow12 documents4 sources
Severity
7.8HIGH
EPSS
0.1%
top 84.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Tivoli Monitoring
Timeline
PublishedDec 1
Latest updateMay 17

Description

Stack-based buffer overflow in the ax Shared Libraries in the Agent in IBM Tivoli Monitoring (ITM) 6.2.2 before FP9, 6.2.3 before FP5, and 6.3.0 before FP2 on Linux and UNIX allows local users to gain privileges via unspecified vectors.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

NVDibm/tivoli_monitoring12 versions+11

Patches

Patch: www-01.ibm.comPatch: www-01.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-85m4-wpg4-w8mj: Stack-based buffer overflow in the ax Shared Libraries in the Agent in IBM Tivoli Monitoring (ITM) 62022-05-17
CVEList
CVE-2016-2946: Stack-based buffer overflow in the ax Shared Libraries in the Agent in IBM Tivoli Monitoring (ITM) 62016-12-01

💬Community

9
Bugzilla
CVE-2016-9904 Mozilla: Cross-origin information leak in shared atoms (MFSA 2016-94, MFSA 2016-95)2016-12-13
Bugzilla
CVE-2016-9898 Mozilla: Use-after-free in Editor while manipulating DOM subtrees (MFSA 2016-94, MFSA 2016-95)2016-12-13
Bugzilla
CVE-2016-9895 Mozilla: CSP bypass using marquee tag (MFSA 2016-94, MFSA 2016-95)2016-12-13
Bugzilla
CVE-2016-9901 Mozilla: Data from Pocket server improperly sanitized before execution (MFSA 2016-94, MFSA 2016-95)2016-12-13
Bugzilla
CVE-2016-9905 Mozilla: Crash in EnumerateSubDocuments (MFSA 2016-94, MFSA 2016-95)2016-12-13
CVE-2016-2946 (HIGH CVSS 7.8) | Stack-based buffer overflow in the | cvebase.io