Lucene search

K
saintSAINT CorporationSAINT:9866E18A5E9234C3564A3558E1F09F3A
HistoryJan 28, 2008 - 12:00 a.m.

Tivoli Provisioning Manager for OS Deployment HTTP server buffer overflow

2008-01-2800:00:00
SAINT Corporation
www.saintcorporation.com
12
tivoli provisioning manager
os deployment
buffer overflow
http server
remote attack
arbitrary commands
interim fix
version 5.1.0.3
idefense
vulnerability
windows 2000
windows server 2003

EPSS

0.799

Percentile

98.4%

Added: 01/28/2008
CVE: CVE-2008-0401
BID: 27387
OSVDB: 40481

Background

Tivoli Provisioning Manager for OS Deployment is a product which facilitates remote operating system installation and management.

Problem

A buffer overflow vulnerability in the HTTP server which comes with Tivoli Provisioning Manager for OS Deployment allows remote attackers to execute arbitrary commands by sending a request for a long, specially crafted URL.

Resolution

Apply Interim Fix 3, Version 5.1.0.3.

References

<http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=647&gt;

Limitations

Exploit works on Tivoli Provisioning Manager for OS Deployment 5.1.0.2.

Exploit requires the IO-Socket-SSL PERL module to be installed on the scanning host. This module is available from <http://www.cpan.org/modules/by-module/IO/&gt;.

Platforms

Windows 2000
Windows Server 2003

EPSS

0.799

Percentile

98.4%