The do_extendedOp function in ibmslapd in IBM Tivoli Directory Server (TDS) 6.0 prior to 6.0.0.62 (aka 6.0.0.8-TIV-ITDS-IF0004) on Linux, Solaris, and Windows allows remote authenticated users to cause a denial of service (ABEND) via a malformed LDAP extended operation that triggers certain comparisons involving the NULL operation OID.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm tivoli_directory_server 6.0.0.54 |
||
ibm tivoli_directory_server 6.0.0.56 |
||
ibm tivoli_directory_server 6.0.0.14 |
||
ibm tivoli_directory_server 6.0.0.33 |
||
ibm tivoli_directory_server 6.0.0.52 |
||
ibm tivoli_directory_server 6.0 |
||
ibm tivoli_directory_server 6.0.0.59 |
||
ibm tivoli_directory_server 6.0.0.58 |
||
ibm tivoli_directory_server 6.0.0.61 |
||
ibm tivoli_directory_server 6.0.0.8 |
||
ibm tivoli_directory_server 6.0.0.60 |
||
ibm tivoli_directory_server 6.0.0.19 |
||
ibm tivoli_directory_server 6.0.0.45 |
||
ibm tivoli_directory_server 6.0.0.41 |
||
ibm tivoli_directory_server 6.0.0.53 |
||
ibm tivoli_directory_server 6.0.0.55 |
||
ibm tivoli_directory_server 6.0.0.57 |
||
ibm tivoli_directory_server 6.0.0.7 |
||
ibm tivoli_directory_server 6.0.0.1 |
||
ibm tivoli_directory_server 6.0.0.0 |