Denial of Service : IBM Tivoli Directory Proxy Server Denial of Service Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.801824

Categoría: Denial of Service

Título: IBM Tivoli Directory Proxy Server Denial of Service Vulnerability

Resumen: IBM Tivoli Directory Server is prone to a denial of service (DoS) vulnerability.

Descripción: Summary:
IBM Tivoli Directory Server is prone to a denial of service (DoS) vulnerability.

Vulnerability Insight:
The flaw is caused by an error in the Proxy server when constructing LDAP
search requests, which could allow remote attackers to crash an affected
server by sending an unbind operation during a page results search.

Vulnerability Impact:
Successful exploitation will allow attacker to crash an affected server,
creating a denial of service condition.

Affected Software/OS:
IBM Tivoli Directory Server (TDS) 6.0.0.x before 6.0.0.8-TIV-ITDS-IF0007
and 6.1.x before 6.1.0-TIV-ITDS-FP0005.

Solution:
Apply interim fix 6.0.0.8-TIV-ITDS-IF0007 or 6.1.0-TIV-ITDS-FP0005.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-4217
AIX APAR: IO13282
http://www-01.ibm.com/support/docview.wss?uid=swg1IO13282
AIX APAR: IO13364
http://www-01.ibm.com/support/docview.wss?uid=swg1IO13364
BugTraq ID: 44604
http://www.securityfocus.com/bid/44604
http://www.osvdb.org/68964
http://securitytracker.com/id?1024670
http://secunia.com/advisories/42083
http://www.vupen.com/english/advisories/2010/2861
http://www.vupen.com/english/advisories/2010/2863

Copyright Copyright (C) 2011 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.801824
Categoría:	Denial of Service
Título:	IBM Tivoli Directory Proxy Server Denial of Service Vulnerability
Resumen:	IBM Tivoli Directory Server is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: IBM Tivoli Directory Server is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The flaw is caused by an error in the Proxy server when constructing LDAP search requests, which could allow remote attackers to crash an affected server by sending an unbind operation during a page results search. Vulnerability Impact: Successful exploitation will allow attacker to crash an affected server, creating a denial of service condition. Affected Software/OS: IBM Tivoli Directory Server (TDS) 6.0.0.x before 6.0.0.8-TIV-ITDS-IF0007 and 6.1.x before 6.1.0-TIV-ITDS-FP0005. Solution: Apply interim fix 6.0.0.8-TIV-ITDS-IF0007 or 6.1.0-TIV-ITDS-FP0005. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4217 AIX APAR: IO13282 http://www-01.ibm.com/support/docview.wss?uid=swg1IO13282 AIX APAR: IO13364 http://www-01.ibm.com/support/docview.wss?uid=swg1IO13364 BugTraq ID: 44604 http://www.securityfocus.com/bid/44604 http://www.osvdb.org/68964 http://securitytracker.com/id?1024670 http://secunia.com/advisories/42083 http://www.vupen.com/english/advisories/2010/2861 http://www.vupen.com/english/advisories/2010/2863
Copyright	Copyright (C) 2011 Greenbone AG