CVE-2010-2927

IBM Tivoli Directory Server <6.0.0.8-TIV-ITDS-IF0006 - DoS

Title source: llm

Description

The slapi_printmessage function in IBM Tivoli Directory Server (ITDS) before 6.0.0.8-TIV-ITDS-IF0006 allows remote attackers to cause a denial of service (daemon crash) via multiple incomplete DIGEST-MD5 connection attempts.

References (6)

[Vendor Advisory] http://secunia.com/advisories/40791

[Patch] http://www-01.ibm.com/support/docview.wss?uid=swg1IO12399

[Patch] http://www-01.ibm.com/support/docview.wss?uid=swg24027463

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/42093

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/60821

[Third Party Advisory, VDB Entry] http://osvdb.org/66782

Scores

EPSS 0.0124

EPSS Percentile 79.0%

Classification

CWE

CWE-287

Status draft

Affected Products (3)

ibm/tivoli_directory_server < 6.0.0.8

ibm/tivoli_directory_server

Timeline

Published Aug 02, 2010

Tracked Since Feb 18, 2026