Current category:Software

IBM Tivoli Directory Server Vulnerabilities

IBM Tivoli

Secunia, via Help Net Security, have reported that IBM’s Tivoli Directory Server (versions 6.1, 6.2 and 6.3) has been found to have multiple vulnerabilities in-the-wild.

Depending on how the product is attacked, the vulnerability can either disclose sensitive information, or be used to produce a DoS, resulting in compromise of the system.

The root-cause appears to be the bundling of a buggy version of IBM Java and a stack-based buffer overflow issue within ibmslapd.exe, resulting in an exploit being able to run arbitrary code.

The sensitive information disclosure results in clear-text passwords being revealed in audit logs, when the server is configured to have extended logging.

IBM are aware of the issue, and are expected to provide security patches which should be applied as soon as they are available.

In the meantime, it is recommend that extended logging in TDS Proxy Server be turned off until the patches are available.

GD Star Rating
loading...
IBM Tivoli Directory Server Vulnerabilities, 5.0 out of 5 based on 1 rating

About Justin Bellinger

Justin is an experienced software professional, having worked in software and software security for nearly 20 years. Justin is VP of Security Products at SPAMfighter.
This entry was posted in Software and tagged , , , . Bookmark the permalink.

2 Comments

  1. IBM already aware of the issue?? aren’t suppose to provide security patches already, or they just like to leave everyone hanging by the thread and we are just suppose to have extended logging in TDS Proxy Server turned off?

  2. Krissy says:

    I just stumbled on to this and I’m SO glad I did. Thanks for all the great info.

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>