| VID |
23193 |
| Severity |
40 |
| Port |
8080,443 |
| Protocol |
TCP |
| Class |
Daemon |
| Detailed Description |
A version of IBM TPM for OS Deployment which is older than version 5.1.0.2 with Interim Fix 2 has been installed on the host. Tivoli Provisioning Manager for OS Deployment versions prior to 5.1.0.2 with Interim Fix 2 could allow a remote attacker to execute arbitrary code on the system, caused by multiple buffer overflow vulnerabilities in the HTTP server. By sending a specially-crafted HTTP POST request to the management interface running on port 8080 or 443, a remote attacker could cause the affected server to crash or possibly execute arbitrary code on the system with SYSTEM privileges.
* Note: This check solely relied on the version number of the remote IBM TPM service to assess this vulnerability, so this might be a false positive.
* References:
http://www-1.ibm.com/support/docview.wss?uid=swg24015664
http://dvlabs.tippingpoint.com/advisory/TPTI-07-05
* Platforms Affected:
IBM TPM for OS Deployment versions prior to 5.1.0.2 with Interim Fix 2
Any operating system Any version |
| Recommendation |
Apply the IBM TPM (Tivoli Provisioning Manager) for OS Deployment Interim Fix IF0002, Version 5.1.0.2 or later, available from IBM Support & downloads Web site at http://www-1.ibm.com/support/docview.wss?uid=swg24015664 |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
