Skip to main content

Divide By Zero

CVE-2007-3268

Severity High
Score 7.5/10

Summary

The TFTP implementation in IBM Tivoli Provisioning Manager for OS Deployment 5.1 before Fix Pack 3 allows remote attackers to cause a denial of service (rembo.exe crash and multiple service outage) via a read (RRQ) request with an invalid blksize (blocksize), which triggers a divide-by-zero error.

  • LOW
  • NETWORK
  • NONE
  • UNCHANGED
  • NONE
  • NONE
  • NONE
  • HIGH

CWE-369 - Divide By Zero

The product divides a value by zero.

References

Advisory Timeline

  • Published