5.8

CVE-2005-3567

slapd daemon in IBM Tivoli Directory Server (ITDS) 5.2.0 and 6.0.0 binds using SASL EXTERNAL, which allows attackers to bypass authentication and modify and delete directory data via unknown attack vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmTivoli Directory Server Version5.2.0
IbmTivoli Directory Server Version6.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.93% 0.557
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.8 6.5 6.4
AV:A/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/17484
Patch
Vendor Advisory
http://securitytracker.com/id?1015171
Patch
http://www-1.ibm.com/support/docview.wss?rs=767&context=SSVJJU&dc=D400&uid=swg24010819&loc=en_US&cs=UTF-8&lang=en
Patch
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=isg1SSRVAIX53SECUR081510_247
http://www-1.ibm.com/support/docview.wss?uid=swg21222159
Patch
Vendor Advisory
http://www-1.ibm.com/support/search.wss?rs=0&q=IO02697&apar=only
http://www-1.ibm.com/support/search.wss?rs=0&q=IO02714&apar=only
http://www.kb.cert.org/vuls/id/194753
US Government Resource
http://www.osvdb.org/20672
Patch
http://www.securityfocus.com/bid/15367
Patch
http://www.vupen.com/english/advisories/2005/2356
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/22989