Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-04-21 | CVE-2009-5072 | Resource Management Errors vulnerability in IBM Tivoli Directory Server Memory leak in the ldap_explode_dn function in IBM Tivoli Directory Server (TDS) 6.0 before 6.0.0.61 (aka 6.0.0.8-TIV-ITDS-IF0003) allows remote authenticated users to cause a denial of service (memory consumption) via an empty string argument. | 4.0 |
| 2011-04-21 | CVE-2008-7290 | Resource Management Errors vulnerability in IBM Tivoli Directory Server 5.2.0/5.2.0.4 Memory leak in the ldap_explode_rdn API function in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 allows remote authenticated users to cause a denial of service (memory consumption) by making many function calls. | 4.0 |
| 2011-04-21 | CVE-2008-7289 | Improper Input Validation vulnerability in IBM Tivoli Directory Server 5.2.0/5.2.0.4 IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 does not properly handle the simultaneous changing of multiple passwords, which makes it easier for remote authenticated users to cause a denial of service (DB2 daemon deadlock) by making password changes that trigger updates to a DB2 password-history table. | 4.0 |
| 2011-04-21 | CVE-2008-7288 | Resource Management Errors vulnerability in IBM Tivoli Directory Server 5.2.0/5.2.0.4 IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 on AIX allows remote attackers to cause a denial of service (server destabilization) via an anonymous DIGEST-MD5 LDAP Bind operation. | 5.0 |
| 2011-04-21 | CVE-2008-7287 | Resource Management Errors vulnerability in IBM Tivoli Directory Server 5.2.0/5.2.0.4 Multiple memory leaks in the (1) ldap_init and (2) ldap_url_search_direct API functions in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 allow remote authenticated users to cause a denial of service (memory consumption) by making many function calls. | 4.0 |
| 2011-04-21 | CVE-2007-6743 | Resource Management Errors vulnerability in IBM Tivoli Directory Server 5.2.0/5.2.0.4 Double free vulnerability in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0005 allows remote authenticated users to cause a denial of service (ABEND) via search operations that trigger recursive filter_free calls. | 4.0 |
| 2011-04-21 | CVE-2007-6742 | Resource Management Errors vulnerability in IBM Tivoli Directory Server 5.2.0/5.2.0.4 The get_filter_list function in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0006 does not properly perform certain sub filter parsing, which allows remote authenticated users to cause a denial of service (infinite loop) via a malformed search filter. | 6.8 |
| 2011-04-20 | CVE-2011-0861 | Remote PeopleSoft Enterprise HRMS vulnerability in Oracle PeopleSoft Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 Update 2011-B and 9.1 Update 2011-B allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Global Payroll Core. | 5.5 |
| 2011-04-20 | CVE-2011-0860 | Remote Global Payroll Spain vulnerability in Oracle PeopleSoft Enterprise Hrms 9.0/9.1 Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 Update 2011-B and 9.1 Update 2011-B allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Global Payroll - Spain. | 5.5 |
| 2011-04-20 | CVE-2011-0859 | Remote Global Payroll North America vulnerability in Oracle PeopleSoft Enterprise Hrms 9.0/9.1 Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 Tax Update 11-B and 9.1 Tax Update 11-B allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Global Payroll - North America. | 5.5 |