Vulnerabilities > CVE-2007-1868 - Stack Buffer Overflow vulnerability in IBM Tivoli Provisioning Manager OS Deployment 5.1.0.116
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
The management service in IBM Tivoli Provisioning Manager for OS Deployment before 5.1 Fix Pack 2 does not properly handle multipart/form-data in HTTP POST requests, which allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via crafted POST requests to port 8080/tcp or 443/tcp.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | IBM TPM for OS Deployment 5.1.0.x rembo.exe Buffer Overflow. CVE-2007-1868. Remote exploit for windows platform |
| id | EDB-ID:16810 |
| last seen | 2016-02-02 |
| modified | 2010-09-20 |
| published | 2010-09-20 |
| reporter | metasploit |
| source | https://www.exploit-db.com/download/16810/ |
| title | IBM TPM for OS Deployment 5.1.0.x rembo.exe Buffer Overflow |
Metasploit
| description | This is a stack buffer overflow exploit for IBM Tivoli Provisioning Manager for OS Deployment version 5.1.0.X. |
| id | MSF:EXPLOIT/WINDOWS/HTTP/IBM_TPMFOSD_OVERFLOW |
| last seen | 2020-05-23 |
| modified | 2017-07-24 |
| published | 2007-05-03 |
| references | |
| reporter | Rapid7 |
| source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/http/ibm_tpmfosd_overflow.rb |
| title | IBM TPM for OS Deployment 5.1.0.x rembo.exe Buffer Overflow |
Nessus
NASL family Web Servers NASL id IBM_TPMFOSD_CORRUPTION.NASL description The remote host is running IBM Tivoli Provisioning Manager for OS Deployment. The version of this software contains multiple unspecified memory corruption vulnerabilities in the HTTP server. A remote attacker may exploit these flaws to crash the service or execute code on the remote host with the privileges of the TPM server. last seen 2020-06-01 modified 2020-06-02 plugin id 25005 published 2007-04-07 reporter This script is Copyright (C) 2007-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/25005 title IBM Tivoli Provisioning Manager OS Deployment Multiple Unspecified Input Validation Vulnerabilities NASL family Web Servers NASL id IBM_TPMFOSD_OVERFLOW.NASL description The remote host is running IBM Tivoli Provisioning Manager for OS Deployment. The version of this software has multiple buffer overflow vulnerabilities in the HTTP server. A remote attacker may exploit these flaws to crash the service or execute code on the remote host with the privileges of the TPM server. last seen 2020-06-01 modified 2020-06-02 plugin id 25149 published 2007-05-03 reporter This script is Copyright (C) 2007-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/25149 title IBM Tivoli Provisioning Manager OS Deployment Multiple Stack Overflows
Packetstorm
| data source | https://packetstormsecurity.com/files/download/83093/ibm_tpmfosd_overflow.rb.txt |
| id | PACKETSTORM:83093 |
| last seen | 2016-12-05 |
| published | 2009-11-26 |
| reporter | toto |
| source | https://packetstormsecurity.com/files/83093/IBM-TPM-for-OS-Deployment-5.1.0.x-rembo.exe-Buffer-Overflow.html |
| title | IBM TPM for OS Deployment 5.1.0.x rembo.exe Buffer Overflow |
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=498
- http://secunia.com/advisories/24717
- http://www.securityfocus.com/bid/23264
- http://www.securitytracker.com/id?1017840
- http://www.vupen.com/english/advisories/2007/1199
- http://www-1.ibm.com/support/docview.wss?uid=swg24015347
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33384