Ibm Tivoli Directory Server vulnerabilities

CVE-2006-0717 [MEDIUM] CVE-2006-0717: IBM Tivoli Directory Server 6.0 allows remote attackers to cause a denial of service (crash) via a c IBM Tivoli Directory Server 6.0 allows remote attackers to cause a denial of service (crash) via a crafted LDAP request, as demonstrated by test 2532 in the ProtoVer Sample LDAP test suite.

CVE-2005-3567 [MEDIUM] CWE-264 CVE-2005-3567: slapd daemon in IBM Tivoli Directory Server (ITDS) 5.2.0 and 6.0.0 binds using SASL EXTERNAL, which slapd daemon in IBM Tivoli Directory Server (ITDS) 5.2.0 and 6.0.0 binds using SASL EXTERNAL, which allows attackers to bypass authentication and modify and delete directory data via unknown attack vectors.

CVE-2004-2526 [MEDIUM] CVE-2004-2526: Directory traversal vulnerability in ldacgi.exe in IBM Tivoli Directory Server 4.1 and earlier allow Directory traversal vulnerability in ldacgi.exe in IBM Tivoli Directory Server 4.1 and earlier allows remote attackers to view arbitrary files via a .. (dot dot) in the Template parameter.