IBM.Tivoli.PMfOSD.HTTP.Request.Method.Buffer.Overflow
Description
This indicates an attack attempt against a buffer overflow vulnerability in IBM Tivoli Provisioning Manager for OS Deployment.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted HTTP request. It allows a remote attacker to cause a denial of service or execute arbitrary code.
Affected Products
IBM Tivoli Provisioning Manager for OS Deployment 5.1 3
IBM Tivoli Provisioning Manager for OS Deployment 5.1 .116
IBM Tivoli Provisioning Manager for OS Deployment 5.1 .116
IBM Tivoli Provisioning Manager for OS Deployment 5.1.0.2
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply patch, available from the web site:
ftp://ftp.software.ibm.com/software/tivoli_support/patches/patches_5.1.0/5.1.0-TIV-TPMOSD-IF0003
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |