Vulnerability-Lookup

CERTA-2005-AVI-382

Vulnerability from certfr_avis - Published: 2005-10-06 - Updated: 2005-10-06

None

Description

IBM Tivoli Monitoring est vulnérable à des attaques par déni de service. Cette vulnérabilité est dûe à la vétusté de la version d'Apache faisant parti par défaut de l'installation de la Web Health Console (WHC).

Solution

Appliquer les différentes mises à jour telles que décrites sur le site de l'éditeur (cf. documentation).

IBM Tivoli Monitoring version 5.X.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité IBM Tivoli	None	vendor-advisory
Mise à jour de l'éditeur:	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eIBM Tivoli Monitoring version 5.X.\u003c/p\u003e",
  "content": "## Description\n\nIBM Tivoli Monitoring est vuln\u00e9rable \u00e0 des attaques par d\u00e9ni de service.\nCette vuln\u00e9rabilit\u00e9 est d\u00fbe \u00e0 la v\u00e9tust\u00e9 de la version d\u0027Apache faisant\nparti par d\u00e9faut de l\u0027installation de la Web Health Console (WHC).\n\n## Solution\n\nAppliquer les diff\u00e9rentes mises \u00e0 jour telles que d\u00e9crites sur le site\nde l\u0027\u00e9diteur (cf. documentation).\n",
  "cves": [],
  "initial_release_date": "2005-10-06T00:00:00",
  "last_revision_date": "2005-10-06T00:00:00",
  "links": [
    {
      "title": "Mise \u00e0 jour de l\u0027\u00e9diteur:",
      "url": "http://www-1.ibm.com/support/docview.wss?rs=177\u0026context=SSEQTJ\u0026uid=swg27005198"
    }
  ],
  "reference": "CERTA-2005-AVI-382",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2005-10-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service"
    }
  ],
  "summary": null,
  "title": "Vuln\u00e9rabilit\u00e9 de IBM Tivoli Monitoring",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM Tivoli",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swg21214217"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted