[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Use-after-free vulnerability in the proxy-server implementation in IBM Tivoli Directory Server (TDS)

ID: oval:org.secpod.oval:def:2078Date: (C)2011-08-30   (M)2022-10-10
Class: VULNERABILITYFamily: windows




The host is installed with IBM Tivoli Directory Server (TDS) 6.0 before 6.0.0.65 (aka 6.0.0.8-TIV-ITDS-IF0007) or 6.3 before 6.3.0.1 (aka 6.3.0.0-TIV-ITDS-IF0001) and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to prevent interruption of a paged search by an LDAP unbind operation. Successful exploitation could allow attackers to crash the service.

Platform:
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product:
IBM Tivoli Directory Server
Reference:
CVE-2010-4789
CVE    1
CVE-2010-4789
CPE    5
cpe:/a:ibm:tivoli_directory_server:6.0
cpe:/a:ibm:tivoli_directory_server
cpe:/a:ibm:tivoli_directory_server:6.0.0.8
cpe:/a:ibm:tivoli_directory_server:6.0.0.7
...

© SecPod Technologies