| VID |
23184 |
| Severity |
40 |
| Port |
8080,443 |
| Protocol |
TCP |
| Class |
Daemon |
| Detailed Description |
A version of IBM TPM for OS Deployment which is older than version 5.1.0.2 has been installed on the host. Tivoli Provisioning Manager for OS Deployment Fix Pack 1 (version 5.1.0.1) and earlier could allow a remote attacker to execute arbitrary code on the system, caused due to errors within the management service when handling multipart/form-data in HTTP POST requests. By sending a specially-crafted HTTP POST request to the management interface running on port 8080 or 443, a remote attacker could cause the affected server to crash or possibly execute arbitrary code on the system with SYSTEM privileges.
* Note: This check solely relied on the version number of the remote IBM TPM service to assess this vulnerability, so this might be a false positive.
* References:
http://www-1.ibm.com/support/docview.wss?uid=swg24015347
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=498
http://www.frsirt.com/english/advisories/2007/1199
http://secunia.com/advisories/24717
* Platforms Affected:
IBM Tivoli Provisioning Manager for OS Deployment versions prior to 5.1.0.2
Any operating system Any version |
| Recommendation |
Apply the latest Fix Pack for IBM TPM (Tivoli Provisioning Manager) for OS Deployment (5.1.0.2 or later), available from IBM Support & downloads Web site at http://www-1.ibm.com/support/docview.wss?uid=swg24015347 |
| Related URL |
CVE-2007-1868 (CVE) |
| Related URL |
23264 (SecurityFocus) |
| Related URL |
33384 (ISS) |
|
