漏洞类别:Local
漏洞等级: 
漏洞信息
IBM Tivoli Monitoring automates monitoring of essential system resources to detect bottlenecks and potential problems.
There are several vulnerabilities in IBM SDK Java Technology Edition that is shipped as part of multiple IBM Tivoli Monitoring (ITM) component.
AFFECTED PRODUCTS AND VERSIONS:
IBM Tivoli Monitoring version 6.2.3 Fix Pack 01 through 6.3.0 Fix Pack 07
QID Detection Logic:
Operating System: Windows
The QID checks if the host is vulnerable by checking the Java SDK from file "ver\KJMWIXEB.ver". The location pf the file is determined via the registry key "HKLM\SOFTWARE\Candle\OMEGAMON" value "InstallDir".
漏洞危害
Successful exploitation allows remote attackers to take control of the system.
解决方案
Vendor has released a patch to fix this vulnerability. More information can be obtained from advisory swg22007056.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0daybank
文章评论