Use-after-free vulnerability in the proxy-server implementation in IBM Tivoli Directory Server (rpm)ID: oval:org.secpod.oval:def:2071 | Date: (C)2011-08-30 (M)2022-10-10 |
Class: VULNERABILITY | Family: unix |
The host is installed with IBM Tivoli Directory Server (TDS) 6.0 before 6.0.0.65 (aka 6.0.0.8-TIV-ITDS-IF0007) or 6.3 before 6.3.0.1 (aka 6.3.0.0-TIV-ITDS-IF0001) and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to prevent interruption of a paged search by an LDAP unbind operation. Successful exploitation could allow attackers to crash the service.
Product: |
IBM Tivoli Directory Server |