Ibm Tivoli Provisioning Manager Express For Software Distribution vulnerabilities
2 known vulnerabilities affecting ibm/tivoli_provisioning_manager_express_for_software_distribution.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2012-0198P2CRITICALCVSS 9.3PoCv4.1.12012-03-06
CVE-2012-0198 [CRITICAL] CVE-2012-0198: Stack-based buffer overflow in the RunAndUploadFile method in the Isig.isigCtl.1 ActiveX control in
Stack-based buffer overflow in the RunAndUploadFile method in the Isig.isigCtl.1 ActiveX control in IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 allows remote attackers to execute arbitrary code via vectors related to an Asset Information file.
nvd
CVE-2012-0199P3HIGHCVSS 7.5v4.1.12012-03-06
CVE-2012-0199 [HIGH] CWE-89 CVE-2012-0199: Multiple SQL injection vulnerabilities in IBM Tivoli Provisioning Manager Express for Software Distr
Multiple SQL injection vulnerabilities in IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 allow remote attackers to execute arbitrary SQL commands via (1) a SOAP message to the Printer.getPrinterAgentKey function in the SoapServlet servlet, (2) the User.updateUserValue function in the register.do servlet, (3) the User.isExistingUs
nvd