CVE-2009-3089 — IBM Tivoli Directory Server vulnerability

3 documents3 sources

Severity

7.8HIGHNVD

CNA5.0

EPSS

0.5%

top 32.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Tivoli Directory Server

Timeline

PublishedSep 8

Latest updateMay 2

Description

IBM Tivoli Directory Server (TDS) 6.0 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via unspecified vectors, related to (1) the ibmslapd.exe daemon on Windows and (2) the ibmdiradm daemon in the administration server on Linux, as demonstrated by certain modules in VulnDisco Pack Professional 8.11, a different vulnerability than CVE-2006-0717. NOTE: as of 20090903, this disclosure has no actionable information. However, because the VulnDisco Pack…

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

▶NVDibm/tivoli_directory_server6.0

🔴Vulnerability Details

GHSA

GHSA-67fc-qg8q-p5jx: IBM Tivoli Directory Server (TDS) 6↗2022-05-02

▶

CVEList

CVE-2009-3089: IBM Tivoli Directory Server (TDS) 6↗2009-09-08

▶