Tivoli Provisioning Manager <= 18.104.22.168 TFTP PRQ Request Remote DoS
Medium Nessus Network Monitor Plugin ID 4139
SynopsisThe remote host is vulnerable to a Denial of Service (DoS) attack.
DescriptionThe remote host is running the IBM 'Tivoli Provisioning Manager for OS Deployment'.
This version of the software is vulnerable to a flaw in the way that it handles malformed TFTP requests. An attacker exploiting this flaw can cause a crash that would affect all of the Tivoli services on the server. An attacker exploiting this flaw would need to be able to send malformed TFTP requests to the server.
SolutionUpgrade or patch according to vendor recommendations.