Strix
26.1K

CVE-2011-0975

UnknownEPSS 6.83%

Last modified

CVE-2011-0975 is a vulnerability of currently unknown severity. Stack-based buffer overflow in BMC PATROL Agent Service Daemon for in Performance Analysis for Servers, Performance Assurance for Servers, and Performance Assurance for Virtual Servers 7.4.00 through 7.5.10; Performance Analyzer and Performance Predictor for Servers 7.4.00 through 7.5.10; and Capacity Management Essentials 1.2.00 (7.4.15) allows remote attackers to execute arbitrary code via a crafted length value in a BGS_MULTIPLE_READS command to TCP port 6768.. EPSS estimates a 6.83% chance of exploitation in the next 30 days.

Description

Stack-based buffer overflow in BMC PATROL Agent Service Daemon for in Performance Analysis for Servers, Performance Assurance for Servers, and Performance Assurance for Virtual Servers 7.4.00 through 7.5.10; Performance Analyzer and Performance Predictor for Servers 7.4.00 through 7.5.10; and Capacity Management Essentials 1.2.00 (7.4.15) allows remote attackers to execute arbitrary code via a crafted length value in a BGS_MULTIPLE_READS command to TCP port 6768.

Metrics

EPSS Probability
6.83%

93.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
BmcPerformance Analysis For Servers7.4.00
BmcPerformance Analysis For Servers7.4.10
BmcPerformance Analysis For Servers7.4.15
BmcPerformance Analysis For Servers7.5.00
BmcPerformance Analysis For Servers7.5.10
BmcPerformance Assurance For Servers7.4.00
BmcPerformance Assurance For Servers7.4.10
BmcPerformance Assurance For Servers7.4.15
BmcPerformance Assurance For Servers7.5.00
BmcPerformance Assurance For Servers7.5.10
BmcPerformance Assurance For Virtual Servers7.4.00
BmcPerformance Assurance For Virtual Servers7.4.10
BmcPerformance Assurance For Virtual Servers7.4.15
BmcPerformance Assurance For Virtual Servers7.5.00
BmcPerformance Assurance For Virtual Servers7.5.10
BmcPerformance Analyzer For Servers7.4.00
BmcPerformance Analyzer For Servers7.4.10
BmcPerformance Analyzer For Servers7.4.15
BmcPerformance Analyzer For Servers7.5.00
BmcPerformance Analyzer For Servers7.5.10
BmcPerformance Predictor For Servers7.4.00
BmcPerformance Predictor For Servers7.4.10
BmcPerformance Predictor For Servers7.4.15
BmcPerformance Predictor For Servers7.5.00
BmcPerformance Predictor For Servers7.5.10
BmcCapacity Management Essentials1.2.00

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2011-0975?
Stack-based buffer overflow in BMC PATROL Agent Service Daemon for in Performance Analysis for Servers, Performance Assurance for Servers, and Performance Assurance for Virtual Servers 7.4.00 through 7.5.10; Performance Analyzer and Performance Predictor for Servers 7.4.00 through 7.5.10; and Capacity Management Essentials 1.2.00 (7.4.15) allows remote attackers to execute arbitrary code via a crafted length value in a BGS_MULTIPLE_READS command to TCP port 6768.
How severe is CVE-2011-0975?
Severity scoring for CVE-2011-0975 is pending analysis. The EPSS model estimates a 6.83% probability of exploitation in the next 30 days.
How do I fix CVE-2011-0975?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2011-0975?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST