CVE-2007-6742

The get_filter_list function in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0006 does not properly perform certain sub filter parsing, which allows remote authenticated users to cause a denial of service (infinite loop) via a malformed search filter.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:tivoli_directory_server:5.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_directory_server:5.2.0.4:*:*:*:*:*:*:*

History

21 Nov 2024, 00:40

Type Values Removed Values Added
References () http://www.ibm.com/support/docview.wss?uid=swg1IO07450 - () http://www.ibm.com/support/docview.wss?uid=swg1IO07450 -
References () http://www.ibm.com/support/docview.wss?uid=swg24029663 - Patch () http://www.ibm.com/support/docview.wss?uid=swg24029663 - Patch

Information

Published : 2011-04-21 10:55

Updated : 2024-11-21 00:40


NVD link : CVE-2007-6742

Mitre link : CVE-2007-6742

CVE.ORG link : CVE-2007-6742


JSON object : View

Products Affected

ibm

  • tivoli_directory_server
CWE
CWE-399

Resource Management Errors