5

CVE-2010-2927

The slapi_printmessage function in IBM Tivoli Directory Server (ITDS) before 6.0.0.8-TIV-ITDS-IF0006 allows remote attackers to cause a denial of service (daemon crash) via multiple incomplete DIGEST-MD5 connection attempts.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmTivoli Directory Server Version <= 6.0.0.8
IbmTivoli Directory Server Version6.0
IbmTivoli Directory Server Version6.0.0.7
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.59% 0.725
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

http://osvdb.org/66782
http://secunia.com/advisories/40791
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IO12399
Patch
http://www-01.ibm.com/support/docview.wss?uid=swg24027463
Patch
http://www.securityfocus.com/bid/42093
https://exchange.xforce.ibmcloud.com/vulnerabilities/60821