Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
directory server vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2010-2222
The _ger_parse_control function in Red Hat Directory Server 8 and the 389 Directory Server allows malicious users to cause a denial of service (NULL pointer dereference) via a crafted search query.
Redhat 389 Directory Server -
Redhat Directory Server 8.0
187
VMScore
CVE-2015-1976
IBM Security Directory Server could allow an authenticated user to execute commands into the web administration tool that would cause the tool to crash.
Ibm Tivoli Directory Server
Ibm Security Directory Server
187
VMScore
CVE-2010-2241
The (1) setup-ds.pl and (2) setup-ds-admin.pl setup scripts for Red Hat Directory Server 8 prior to 8.2 use world-readable permissions when creating cache files, which allows local users to obtain sensitive information including passwords for Directory and Administration Server a...
Redhat Directory Server 8.0
Redhat Directory Server 8.1
668
VMScore
CVE-2008-1995
Sun Java System Directory Proxy Server 6.0, 6.1, and 6.2 classifies a connection using the "bind-dn" criteria, which can cause an incorrect application of policy and allows remote malicious users to bypass intended access restrictions for the server.
Sun Java System Directory Server 6.2
Sun Java System Directory Server 6.0
Sun Java System Directory Server 6.1
505
VMScore
CVE-2004-2526
Directory traversal vulnerability in ldacgi.exe in IBM Tivoli Directory Server 4.1 and previous versions allows remote malicious users to view arbitrary files via a .. (dot dot) in the Template parameter.
Ibm Tivoli Directory Server
Ibm Tivoli Directory Server 3.2.2
1 EDB exploit
605
VMScore
CVE-2007-6742
The get_filter_list function in IBM Tivoli Directory Server (TDS) 5.2 prior to 5.2.0.5-TIV-ITDS-LA0006 does not properly perform certain sub filter parsing, which allows remote authenticated users to cause a denial of service (infinite loop) via a malformed search filter.
Ibm Tivoli Directory Server 5.2.0
Ibm Tivoli Directory Server 5.2.0.4
356
VMScore
CVE-2007-6743
Double free vulnerability in IBM Tivoli Directory Server (TDS) 5.2 prior to 5.2.0.5-TIV-ITDS-LA0005 allows remote authenticated users to cause a denial of service (ABEND) via search operations that trigger recursive filter_free calls.
Ibm Tivoli Directory Server 5.2.0.4
Ibm Tivoli Directory Server 5.2.0
445
VMScore
CVE-2017-7551
389-ds-base version prior to 1.3.5.19 and 1.3.6.7 are vulnerable to password brute-force attacks during account lockout due to different return codes returned on password attempts.
Fedoraproject 389 Directory Server 1.3.6.7
Fedoraproject 389 Directory Server 1.3.5.19
516
VMScore
CVE-2005-3567
slapd daemon in IBM Tivoli Directory Server (ITDS) 5.2.0 and 6.0.0 binds using SASL EXTERNAL, which allows malicious users to bypass authentication and modify and delete directory data via unknown attack vectors.
Ibm Tivoli Directory Server 5.2.0
Ibm Tivoli Directory Server 6.0
187
VMScore
CVE-2011-1822
The LDAP_ADD implementation in IBM Tivoli Directory Server (TDS) 5.2 prior to 5.2.0.5-TIV-ITDS-IF0009 stores a cleartext SHA password in the change log, which might allow local users to obtain sensitive information by reading this log.
Ibm Tivoli Directory Server 5.2.0
Ibm Tivoli Directory Server 5.2.0.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »