CVE-2007-3268

HIGH

IBM Tivoli Provisioning Manager OS Deployment - Divide By Zero

Title source: rule

Description

The TFTP implementation in IBM Tivoli Provisioning Manager for OS Deployment 5.1 before Fix Pack 3 allows remote attackers to cause a denial of service (rembo.exe crash and multiple service outage) via a read (RRQ) request with an invalid blksize (blocksize), which triggers a divide-by-zero error.

References (8)

Scores

CVSS v3 7.5
EPSS 0.0335
EPSS Percentile 87.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE
CWE-369
Status draft

Affected Products (1)

ibm/tivoli_provisioning_manager_os_deployment

Timeline

Published Jul 18, 2007
Tracked Since Feb 18, 2026