SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#158609

IBM Tivoli Provisioning Manager for OS Deployment (TPMfOSD) allows buffer overflow via HTTP request

Overview

The IBM Tivoli Provisioning Manager for OS Deployment (TPMfOSD) contains a buffer overflow vulnerability in the web server component. This vulnerability may allow an attacker to execute arbitrary code with SYSTEM privileges or cause a denial of service.

I. Description

IBM Tivoli Provisioning Manager for OS Deployment (TPMfOSD) is a network boot server that facilitates central management of networked workstations. IBM TPMfOSD contains a buffer overflow vulnerability within the logging functionality of the web server component. A remote, unauthenticated attacker may be able to exploit this vulnerability by sending a specially crafted HTTPS (443/TCP) request to a target machine.

II. Impact

A remote, unauthenticated attacker could execute arbitrary code with SYSTEM privileges or crash the server process, causing a denial of service.

III. Solution

Apply an Update

IBM has released Interim Fix 3 Version 5.1.0.3 to address this issue.

Block or Restrict Access

Block or restrict access to the web server component from untrusted hosts and networks.

Systems Affected

VendorStatusDate NotifiedDate Updated
IBM CorporationVulnerable6-Mar-2008

References


http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=647
http://www-1.ibm.com/support/docview.wss?uid=swg24018010
http://securitytracker.com/alerts/2008/Jan/1019249.html
http://www.securityfocus.com/bid/27387
http://secunia.com/advisories/28604

Credit

Thanks to iDefense Labs for reporting this vulnerability.

This document was written by John Hollenberger.

Other Information

Date Public:2008-01-24
Date First Published:2008-03-06
Date Last Updated:2008-03-06
CERT Advisory: 
CVE-ID(s):CVE-2008-0401
NVD-ID(s):CVE-2008-0401
US-CERT Technical Alerts: 
Metric:8.17
Document Revision:17

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Produced 2008 by US-CERT, a government organization
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader