1. Home
  2. CVE Database
  3. CVE-2007-1868
HIGH · 10.0

CVE-2007-1868

The management service in IBM Tivoli Provisioning Manager for OS Deployment before 5.1 Fix Pack 2 does not properly handle multipart/form-data in HTTP POST requests, which allows remote attackers to e...

Vulnerability Description

The management service in IBM Tivoli Provisioning Manager for OS Deployment before 5.1 Fix Pack 2 does not properly handle multipart/form-data in HTTP POST requests, which allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via crafted POST requests to port 8080/tcp or 443/tcp.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
IbmTivoli Provisioning Manager Os Deployment5.1.0.116

References

FAQ

What is CVE-2007-1868?

CVE-2007-1868 is a vulnerability with a CVSS score of 10.0 (HIGH). The management service in IBM Tivoli Provisioning Manager for OS Deployment before 5.1 Fix Pack 2 does not properly handle multipart/form-data in HTTP POST requests, which allows remote attackers to e...

How severe is CVE-2007-1868?

CVE-2007-1868 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-1868?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Tivoli Provisioning Manager Os Deployment.