Denial of Service : IBM Tivoli Directory Server LDAP BER Denial of Service Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.801823

Categoría: Denial of Service

Título: IBM Tivoli Directory Server LDAP BER Denial of Service Vulnerability

Resumen: IBM Tivoli Directory Server is prone to a denial of service (DoS) vulnerability.

Descripción: Summary:
IBM Tivoli Directory Server is prone to a denial of service (DoS) vulnerability.

Vulnerability Insight:
The flaw is due to a validation error when handling BER-encoded
LDAP requests and can be exploited to cause a crash via a specially crafted
request.

Vulnerability Impact:
Successful exploitation will allow attacker to crash an affected server,
creating a denial of service condition.

Affected Software/OS:
IBM Tivoli Directory Server (ITDS) before 6.0.0.8-TIV-ITDS-IF0007

Solution:
Apply interim fix 6.0.0.8-TIV-ITDS-IF0007.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-4216
AIX APAR: IO13306
http://www.ibm.com/support/docview.wss?uid=swg1IO13306
BugTraq ID: 44604
http://www.securityfocus.com/bid/44604
http://secunia.com/advisories/42116
http://www.vupen.com/english/advisories/2010/2863
XForce ISS Database: ibm-tds-ber-ldap-dos(62977)
https://exchange.xforce.ibmcloud.com/vulnerabilities/62977

Copyright Copyright (C) 2011 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.801823
Categoría:	Denial of Service
Título:	IBM Tivoli Directory Server LDAP BER Denial of Service Vulnerability
Resumen:	IBM Tivoli Directory Server is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: IBM Tivoli Directory Server is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The flaw is due to a validation error when handling BER-encoded LDAP requests and can be exploited to cause a crash via a specially crafted request. Vulnerability Impact: Successful exploitation will allow attacker to crash an affected server, creating a denial of service condition. Affected Software/OS: IBM Tivoli Directory Server (ITDS) before 6.0.0.8-TIV-ITDS-IF0007 Solution: Apply interim fix 6.0.0.8-TIV-ITDS-IF0007. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4216 AIX APAR: IO13306 http://www.ibm.com/support/docview.wss?uid=swg1IO13306 BugTraq ID: 44604 http://www.securityfocus.com/bid/44604 http://secunia.com/advisories/42116 http://www.vupen.com/english/advisories/2010/2863 XForce ISS Database: ibm-tds-ber-ldap-dos(62977) https://exchange.xforce.ibmcloud.com/vulnerabilities/62977
Copyright	Copyright (C) 2011 Greenbone AG