Tivoli Provisioning Manager for OS Deployment is a product which facilitates remote operating system installation and management.
A buffer overflow vulnerability in the HTTP server which comes with Tivoli Provisioning Manager for OS Deployment allows remote attackers to execute arbitrary commands by sending a request for a long, specially crafted URL.
Apply Interim Fix 3, Version 126.96.36.199.
Exploit works on Tivoli Provisioning Manager for OS Deployment 188.8.131.52.
Exploit requires the IO-Socket-SSL PERL module to be installed on the scanning host. This module is available from <http://www.cpan.org/modules/by-module/IO/>.
Windows Server 2003