IBM Tivoli Provisioning Manager for OS Deployment TFTPD Malformed PRQ Request DoS

This script is Copyright (C) 2007-2013 Tenable Network Security, Inc.


Synopsis :

A service on the remote host is prone to a denial of service attack.

Description :

The remote host is running IBM Tivoli Provisioning Manager for OS
Deployment, for remote deployment and management of operating systems.

The TFTPD component of the version of this software installed on the
remote host does not handle read requests with an invalid 'blksize'
argument. An unauthenticated attacker can leverage this issue to
trigger a divide-by-zero error and cause the 'rembo.exe' service to
exit.

See also :

http://www.nessus.org/u?0642934f
http://www.securityfocus.com/archive/1/473925/30/0/threaded

Solution :

Upgrade to Tivoli Provisioning Manager for OS Deployment, Fix Pack 3
(version 5.1.0.3) or later.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 4.1
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 25738 (ibm_tpmfosd_tftpd_blocksize_dos.nasl)

Bugtraq ID: 24942

CVE ID: CVE-2007-3268

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now