BID:52252

IBM Tivoli Provisioning Manager Express ActiveX Control Remote Code Execution Vulnerability

Info

IBM Tivoli Provisioning Manager Express ActiveX Control Remote Code Execution Vulnerability

Bugtraq ID:	52252
Class:	Unknown
CVE:	CVE-2012-0199
Remote:	Yes
Local:	No
Published:	Mar 01 2012 12:00AM
Updated:	Apr 10 2012 07:20AM
Credit:	Andrea Micalizzi aka rgod
Vulnerable:	IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1

Not Vulnerable:

Discussion

IBM Tivoli Provisioning Manager Express ActiveX Control Remote Code Execution Vulnerability

IBM Tivoli Provisioning Manager Express for Software Distribution is prone to a remote code-execution vulnerability.

An attacker could exploit this issue to write arbitrary data to a local file and execute that data in the context of the application using the affected control (typically Internet Explorer).

IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 is vulnerable.

Exploit / POC

IBM Tivoli Provisioning Manager Express ActiveX Control Remote Code Execution Vulnerability

To exploit this issue, an attacker must entice a victim to view a malicious Web page.

The following exploit is available:

/data/vulnerabilities/exploits/52252.rb

Solution / Fix

IBM Tivoli Provisioning Manager Express ActiveX Control Remote Code Execution Vulnerability

Solution:
Vendor updates are available. Please see the referenced advisory for more information.

References

IBM Tivoli Provisioning Manager Express ActiveX Control Remote Code Execution Vulnerability

References:

IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 Multiple (Zero Day Initiative)
Tivoli Provisioning Manager Express for Software Distribution Homepage (IBM)