Vulnerabilities > CVE-2011-1822 - Credentials Management vulnerability in IBM Tivoli Directory Server 5.2.0/5.2.0.4
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
The LDAP_ADD implementation in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0009 stores a cleartext SHA password in the change log, which might allow local users to obtain sensitive information by reading this log.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |