CVE-2010-2927

IBM Tivoli Directory Server <6.0.0.8-TIV-ITDS-IF0006 - DoS

Title source: llm

Description

The slapi_printmessage function in IBM Tivoli Directory Server (ITDS) before 6.0.0.8-TIV-ITDS-IF0006 allows remote attackers to cause a denial of service (daemon crash) via multiple incomplete DIGEST-MD5 connection attempts.

References (6)

Core 6

Core References

Patch x_refsource_confirm

http://www-01.ibm.com/support/docview.wss?uid=swg24027463

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/66782

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/60821

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/40791

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/42093

Patch vendor-advisory x_refsource_aixapar

http://www-01.ibm.com/support/docview.wss?uid=swg1IO12399

Scores

EPSS 0.0159

EPSS Percentile 72.6%

Details

CWE

CWE-287

Status published

Products (3)

ibm/tivoli_directory_server 6.0

ibm/tivoli_directory_server 6.0.0.7

ibm/tivoli_directory_server < 6.0.0.8

Published Aug 02, 2010

Tracked Since Feb 18, 2026