CVE-2007-6742

Sažetak

The get_filter_list function in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0006 does not properly perform certain sub filter parsing, which allows remote authenticated users to cause a denial of service (infinite loop) via a malformed search filter.

Reference

http://www.ibm.com/support/docview.wss?uid=swg1IO07450
http://www.ibm.com/support/docview.wss?uid=swg24029663

CVSS

Base:	6.8
Impact:	6.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:S/C:N/I:N/A:C

Zadnje važnije ažuriranje

21-04-2011 - 10:55

Objavljeno

21-04-2011 - 10:55