Detections
Analytics

IBM Tivoli Provisioning Manager for OS Deployment TFTPD Malformed PRQ Request DoS

medium Nessus Plugin ID 25738

Language:

Synopsis

A service on the remote host is prone to a denial of service attack.

Description

The remote host is running IBM Tivoli Provisioning Manager for OS Deployment, for remote deployment and management of operating systems.

The TFTPD component of the version of this software installed on the remote host does not handle read requests with an invalid 'blksize' argument. An unauthenticated attacker can leverage this issue to trigger a divide-by-zero error and cause the 'rembo.exe' service to exit.

Solution

Upgrade to Tivoli Provisioning Manager for OS Deployment, Fix Pack 3 (version 5.1.0.3) or later.

See Also

http://www.nessus.org/u?0642934f

https://www.securityfocus.com/archive/1/473925/30/0/threaded

Plugin Details

Severity: Medium

ID: 25738

File Name: ibm_tpmfosd_tftpd_blocksize_dos.nasl

Version: 1.18

Type: remote

Agent: windows

Family: Windows

Published: 7/19/2007

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/a:ibm:tivoli_provisioning_manager_os_deployment

Required KB Items: Services/udp/tftp

Exploit Ease: No known exploits are available

Patch Publication Date: 7/17/2007

Vulnerability Publication Date: 7/18/2007

Reference Information

CVE: CVE-2007-3268

BID: 24942