IBM Tivoli Provisioning Manager OS Deployment < 184.108.40.206 Interim Fix 3 HTTP Server Logging Functionality Remote Overflow
Critical Nessus Plugin ID 31052
SynopsisThe remote web server is prone to a buffer overflow attack.
DescriptionThe remote host is running IBM Tivoli Provisioning Manager for OS Deployment, for remote deployment and management of operating systems.
There is a buffer overflow vulnerability in the software's HTTP server, in its logging functionality. An unauthenticated, remote attacker may be able to leverage this issue to cause a denial of service or execute arbitrary code with SYSTEM privileges.
SolutionUpgrade to Tivoli Provisioning Manager for OS Deployment 220.127.116.11 (build 025.52) or later.