CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
91.6%
IBM Tivoli Directory Server (TDS) 6.0.0.x before 6.0.0.8-TIV-ITDS-IF0007 does not properly handle invalid buffer references in LDAP BER requests, which might allow remote attackers to cause a denial of service (daemon crash) via vectors involving a buffer that has a memory address near the maximum possible address.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | tivoli_directory_server | 6.0 | cpe:2.3:a:ibm:tivoli_directory_server:6.0:*:*:*:*:*:*:* |
ibm | tivoli_directory_server | 6.0.0.7 | cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.7:*:*:*:*:*:*:* |
ibm | tivoli_directory_server | 6.0.0.8 | cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.8:*:*:*:*:*:*:* |