Описание
The TFTP implementation in IBM Tivoli Provisioning Manager for OS Deployment 5.1 before Fix Pack 3 allows remote attackers to cause a denial of service (rembo.exe crash and multiple service outage) via a read (RRQ) request with an invalid blksize (blocksize), which triggers a divide-by-zero error.
Ссылки
- Broken LinkVendor Advisory
- Broken LinkPatchVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkPatch
- Broken LinkThird Party AdvisoryVDB Entry
- Broken Link
- Patch
- VDB EntryVendor Advisory
- Broken LinkVendor Advisory
- Broken LinkPatchVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkPatch
- Broken LinkThird Party AdvisoryVDB Entry
- Broken Link
- Patch
- VDB EntryVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:ibm:tivoli_provisioning_manager_os_deployment:5.1.0.2:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03217
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-369
Связанные уязвимости
CVSS3: 7.5
github
почти 4 года назад
The TFTP implementation in IBM Tivoli Provisioning Manager for OS Deployment 5.1 before Fix Pack 3 allows remote attackers to cause a denial of service (rembo.exe crash and multiple service outage) via a read (RRQ) request with an invalid blksize (blocksize), which triggers a divide-by-zero error.
EPSS
Процентиль: 87%
0.03217
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-369