CVE-2007-1868

2007-04-04T16:19:00
ID CVE-2007-1868
Type cve
Reporter cve@mitre.org
Modified 2017-07-29T01:31:00

Description

The management service in IBM Tivoli Provisioning Manager for OS Deployment before 5.1 Fix Pack 2 does not properly handle multipart/form-data in HTTP POST requests, which allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via crafted POST requests to port 8080/tcp or 443/tcp.