QwikSec

Security Database

CVE

CWE

Training

CVE-2007-3268

Published: Jul 18, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

The TFTP implementation in IBM Tivoli Provisioning Manager for OS Deployment 5.1 before Fix Pack 3 allows remote attackers to cause a denial of service (rembo.exe crash and multiple service outage) via a read (RRQ) request with an invalid blksize (blocksize), which triggers a divide-by-zero error.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www3.software.ibm.com/ibmdl/pub/software/tivoli_support/patches/patches_5.1.0/5.1.0-TIV-TPMOSD-FP0003/5.1.0-TIV-TPMOSD-FP0003.README.HTM

x_refsource_CONFIRM

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

http://www-1.ibm.com/support/docview.wss?uid=swg24016347

x_refsource_CONFIRM

20070717 IBM Tivoli Provisioning Manager for OS Deployment TFTP Blocksize DoS Vulnerability

third-party-advisory

x_refsource_IDEFENSE

vdb-entry

x_refsource_SECTRACK

tivoli-rembo-dos(35468)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.