CVE-2017-1635 PoC — IBM Tivoli Monitoring 资源管理错误漏洞

Source

Associated Vulnerability

Title:IBM Tivoli Monitoring 资源管理错误漏洞 (CVE-2017-1635)
Description:IBM Tivoli Monitoring是美国IBM公司的一套系统监控软件。该软件支持检测系统瓶颈和潜在的问题、对基本系统资源进行性能监控、自动从危急情况中恢复等。 IBM Tivoli Monitoring V6 6.2.2.x版本中存在资源管理错误漏洞。远程攻击者可利用该漏洞在系统上执行任意代码或造成拒绝服务（释放后重用和应用程序崩溃）。

Description

CVE-2017-1635 PoC code

Readme

# tivoli-poc

CVE-2017-1635 PoC code

CVEID: CVE-2017-1635

CVSS Base Score: 8

Affected Products and Versions: KDH component of IBM Tivoli Monitoring Basic Services (KGL,KAX) for Version 6.2.2.0 through 6.2.2.9
 

A vulnerability exists in the internal web server provided by IBM Tivoli Monitoring basic services. It could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free error. A remote attacker could exploit this vulnerability to execute arbitrary code on the system or cause the application to crash.
The web server component "KDH", after receiving certain requests, executes a memory region in the heap previously freed by the component itself.
An attacker is able to fill the heap before the memory is reused, in order to execute arbitrary code.

http://www-01.ibm.com/support/docview.wss?uid=swg22010554

https://www.securityfocus.com/bid/101905

http://www.quantumleap.it/ibm-tivoli-monitoring-cve-2017-1635-remote-code-execution-vulnerability/

File Snapshot


 [4.0K]  /data/pocs/de9339ae8304522b22835693bd3272094e9d48bd
├── [ 410]  poc.py
└── [ 999]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!