CVE-2007-1868

Name of the Vulnerable Software and Affected Versions: IBM Tivoli Provisioning Manager for OS Deployment versions prior to 5.1 Fix Pack 2

Description: The management service does not properly handle multipart/form-data in HTTP POST requests, allowing remote attackers to execute arbitrary code or cause a denial of service via crafted POST requests to port 8080/tcp or 443/tcp.

Recommendations: For versions prior to 5.1 Fix Pack 2, update to 5.1 Fix Pack 2 or later to resolve the issue. As a temporary workaround, consider restricting access to the management service on ports 8080/tcp and 443/tcp to minimize the risk of exploitation.