Use-after-free vulnerability in the proxy-server implementation in IBM Tivoli Directory Server (TDS)ID: oval:org.secpod.oval:def:2078 | Date: (C)2011-08-30 (M)2022-10-10 |
Class: VULNERABILITY | Family: windows |
The host is installed with IBM Tivoli Directory Server (TDS) 6.0 before 6.0.0.65 (aka 6.0.0.8-TIV-ITDS-IF0007) or 6.3 before 6.3.0.1 (aka 6.3.0.0-TIV-ITDS-IF0001) and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to prevent interruption of a paged search by an LDAP unbind operation. Successful exploitation could allow attackers to crash the service.
Platform: |
Microsoft Windows 2000 |
Microsoft Windows 7 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Vista |
Microsoft Windows XP |
Product: |
IBM Tivoli Directory Server |