4
CVSSv2

CVE-2010-4785

Published: 21/04/2011 Updated: 21/04/2011
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
VMScore: 356
Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P

Vulnerability Summary

The do_extendedOp function in ibmslapd in IBM Tivoli Directory Server (TDS) 6.0 prior to 6.0.0.62 (aka 6.0.0.8-TIV-ITDS-IF0004) on Linux, Solaris, and Windows allows remote authenticated users to cause a denial of service (ABEND) via a malformed LDAP extended operation that triggers certain comparisons involving the NULL operation OID.

Vulnerable Product Search on Vulmon Subscribe to Product

ibm tivoli directory server 6.0

ibm tivoli directory server 6.0.0.0

ibm tivoli directory server 6.0.0.1

ibm tivoli directory server 6.0.0.7

ibm tivoli directory server 6.0.0.8

ibm tivoli directory server 6.0.0.14

ibm tivoli directory server 6.0.0.19

ibm tivoli directory server 6.0.0.33

ibm tivoli directory server 6.0.0.41

ibm tivoli directory server 6.0.0.45

ibm tivoli directory server 6.0.0.52

ibm tivoli directory server 6.0.0.53

ibm tivoli directory server 6.0.0.54

ibm tivoli directory server 6.0.0.55

ibm tivoli directory server 6.0.0.56

ibm tivoli directory server 6.0.0.57

ibm tivoli directory server 6.0.0.58

ibm tivoli directory server 6.0.0.59

ibm tivoli directory server 6.0.0.60

ibm tivoli directory server 6.0.0.61