IBM Cognos TM1 Admin Server Remote Buffer Overflow Vulnerability

IBM Cognos TM1 Admin Server Remote Buffer Overflow Vulnerability

IBM Cognos TM1 is prone to a remote buffer-overflow vulnerability because it fails to properly validate user-supplied input before copying it into a fixed-length buffer.

Attackers can exploit this issue to execute arbitrary code in the context of the application. Failed attacks may cause a denial-of-service condition.

IBM Cognos TM1 9.4.1 and 9.5.x prior to 9.5.2 FP2 are vulnerable.