Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
directory server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-2241
The (1) setup-ds.pl and (2) setup-ds-admin.pl setup scripts for Red Hat Directory Server 8 prior to 8.2 use world-readable permissions when creating cache files, which allows local users to obtain sensitive information including passwords for Directory and Administration Server a...
Redhat Directory Server 8.0
Redhat Directory Server 8.1
7.5
CVSSv3
CVE-2010-2222
The _ger_parse_control function in Red Hat Directory Server 8 and the 389 Directory Server allows malicious users to cause a denial of service (NULL pointer dereference) via a crafted search query.
Redhat 389 Directory Server -
Redhat Directory Server 8.0
5.5
CVSSv3
CVE-2015-1976
IBM Security Directory Server could allow an authenticated user to execute commands into the web administration tool that would cause the tool to crash.
Ibm Tivoli Directory Server
Ibm Security Directory Server
NA
CVE-2008-1995
Sun Java System Directory Proxy Server 6.0, 6.1, and 6.2 classifies a connection using the "bind-dn" criteria, which can cause an incorrect application of policy and allows remote malicious users to bypass intended access restrictions for the server.
Sun Java System Directory Server 6.2
Sun Java System Directory Server 6.0
Sun Java System Directory Server 6.1
NA
CVE-2004-2526
Directory traversal vulnerability in ldacgi.exe in IBM Tivoli Directory Server 4.1 and previous versions allows remote malicious users to view arbitrary files via a .. (dot dot) in the Template parameter.
Ibm Tivoli Directory Server
Ibm Tivoli Directory Server 3.2.2
1 EDB exploit
NA
CVE-2011-1822
The LDAP_ADD implementation in IBM Tivoli Directory Server (TDS) 5.2 prior to 5.2.0.5-TIV-ITDS-IF0009 stores a cleartext SHA password in the change log, which might allow local users to obtain sensitive information by reading this log.
Ibm Tivoli Directory Server 5.2.0
Ibm Tivoli Directory Server 5.2.0.4
9.8
CVSSv3
CVE-2017-7551
389-ds-base version prior to 1.3.5.19 and 1.3.6.7 are vulnerable to password brute-force attacks during account lockout due to different return codes returned on password attempts.
Fedoraproject 389 Directory Server 1.3.6.7
Fedoraproject 389 Directory Server 1.3.5.19
NA
CVE-2005-3567
slapd daemon in IBM Tivoli Directory Server (ITDS) 5.2.0 and 6.0.0 binds using SASL EXTERNAL, which allows malicious users to bypass authentication and modify and delete directory data via unknown attack vectors.
Ibm Tivoli Directory Server 5.2.0
Ibm Tivoli Directory Server 6.0
NA
CVE-2007-6742
The get_filter_list function in IBM Tivoli Directory Server (TDS) 5.2 prior to 5.2.0.5-TIV-ITDS-LA0006 does not properly perform certain sub filter parsing, which allows remote authenticated users to cause a denial of service (infinite loop) via a malformed search filter.
Ibm Tivoli Directory Server 5.2.0
Ibm Tivoli Directory Server 5.2.0.4
NA
CVE-2007-6743
Double free vulnerability in IBM Tivoli Directory Server (TDS) 5.2 prior to 5.2.0.5-TIV-ITDS-LA0005 allows remote authenticated users to cause a denial of service (ABEND) via search operations that trigger recursive filter_free calls.
Ibm Tivoli Directory Server 5.2.0.4
Ibm Tivoli Directory Server 5.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »