Vulnerabilities > IBM > Tivoli Directory Server > 5.2.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-04-21 | CVE-2008-7287 | Resource Management Errors vulnerability in IBM Tivoli Directory Server 5.2.0/5.2.0.4 Multiple memory leaks in the (1) ldap_init and (2) ldap_url_search_direct API functions in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 allow remote authenticated users to cause a denial of service (memory consumption) by making many function calls. | 4.0 |
2011-04-21 | CVE-2007-6743 | Resource Management Errors vulnerability in IBM Tivoli Directory Server 5.2.0/5.2.0.4 Double free vulnerability in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0005 allows remote authenticated users to cause a denial of service (ABEND) via search operations that trigger recursive filter_free calls. | 4.0 |
2011-04-21 | CVE-2007-6742 | Resource Management Errors vulnerability in IBM Tivoli Directory Server 5.2.0/5.2.0.4 The get_filter_list function in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0006 does not properly perform certain sub filter parsing, which allows remote authenticated users to cause a denial of service (infinite loop) via a malformed search filter. | 6.8 |
2010-08-02 | CVE-2010-2927 | Improper Authentication vulnerability in IBM Tivoli Directory Server The slapi_printmessage function in IBM Tivoli Directory Server (ITDS) before 6.0.0.8-TIV-ITDS-IF0006 allows remote attackers to cause a denial of service (daemon crash) via multiple incomplete DIGEST-MD5 connection attempts. | 5.0 |
2005-11-16 | CVE-2005-3567 | Permissions, Privileges, and Access Controls vulnerability in IBM Tivoli Directory Server 5.2.0/6.0 slapd daemon in IBM Tivoli Directory Server (ITDS) 5.2.0 and 6.0.0 binds using SASL EXTERNAL, which allows attackers to bypass authentication and modify and delete directory data via unknown attack vectors. | 5.8 |