Tivoli Directory Server@5.2.0.4 Security Vulnerabilities and Issues — Tivoli Directory Server@5.2.0.4 CVE List

Lucene search

IbmTivoli Directory Server5.2.0.4

10 matches found

CVE•added 2011/04/21 10:55 a.m.•54 views

CVE-2011-1206

Stack-based buffer overflow in the server process in ibmslapd.exe in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0010, 6.0 before 6.0.0.67 (aka 6.0.0.8-TIV-ITDS-IF0009), 6.1 before 6.1.0.40 (aka 6.1.0.5-TIV-ITDS-IF0003), 6.2 before 6.2.0.16 (aka 6.2.0.3-TIV-ITDS-IF0002), and 6.3...

10CVSS7.8AI score0.57315EPSS

CVE•added 2011/04/21 10:55 a.m.•41 views

CVE-2011-1820

IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0010, 6.0 before 6.0.0.67 (aka 6.0.0.8-TIV-ITDS-IF0009), 6.1 before 6.1.0.40 (aka 6.1.0.5-TIV-ITDS-IF0003), 6.2 before 6.2.0.16 (aka 6.2.0.3-TIV-ITDS-IF0002), and 6.3 before 6.3.0.3 (aka 6.3.0.0-TIV-ITDS-IF0003) does not properly handl...

1.7CVSS6.1AI score0.00067EPSS

CVE•added 2011/04/21 10:55 a.m.•41 views

CVE-2011-1822

The LDAP_ADD implementation in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0009 stores a cleartext SHA password in the change log, which might allow local users to obtain sensitive information by reading this log.

2.1CVSS5.8AI score0.00051EPSS

CVE•added 2011/04/21 10:55 a.m.•39 views

CVE-2007-6743

Double free vulnerability in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0005 allows remote authenticated users to cause a denial of service (ABEND) via search operations that trigger recursive filter_free calls.

4CVSS6.2AI score0.0036EPSS

CVE•added 2011/04/21 10:55 a.m.•37 views

CVE-2008-7289

IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 does not properly handle the simultaneous changing of multiple passwords, which makes it easier for remote authenticated users to cause a denial of service (DB2 daemon deadlock) by making password changes that trigger updates to a...

4CVSS6.5AI score0.0036EPSS

CVE•added 2011/04/21 10:55 a.m.•36 views

CVE-2007-6742

The get_filter_list function in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0006 does not properly perform certain sub filter parsing, which allows remote authenticated users to cause a denial of service (infinite loop) via a malformed search filter.

6.8CVSS6.2AI score0.00384EPSS

CVE•added 2011/04/21 10:55 a.m.•36 views

CVE-2008-7288

IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 on AIX allows remote attackers to cause a denial of service (server destabilization) via an anonymous DIGEST-MD5 LDAP Bind operation.

5CVSS6.7AI score0.00572EPSS

CVE•added 2011/04/21 10:55 a.m.•35 views

CVE-2008-7290

Memory leak in the ldap_explode_rdn API function in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 allows remote authenticated users to cause a denial of service (memory consumption) by making many function calls.

4CVSS6.2AI score0.0036EPSS

CVE•added 2011/04/21 10:55 a.m.•35 views

CVE-2011-1821

IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0010 on Windows allows remote authenticated users to cause a denial of service (daemon hang) via a cn=changelog search.

4CVSS6.2AI score0.0036EPSS

CVE•added 2011/04/21 10:55 a.m.•33 views

CVE-2008-7287

Multiple memory leaks in the (1) ldap_init and (2) ldap_url_search_direct API functions in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 allow remote authenticated users to cause a denial of service (memory consumption) by making many function calls.

4CVSS6.3AI score0.0036EPSS