The get_filter_list function in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0006 does not properly perform certain sub filter parsing, which allows remote authenticated users to cause a denial of service (infinite loop) via a malformed search filter.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:40
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.ibm.com/support/docview.wss?uid=swg1IO07450 - | |
References | () http://www.ibm.com/support/docview.wss?uid=swg24029663 - Patch |
Information
Published : 2011-04-21 10:55
Updated : 2024-11-21 00:40
NVD link : CVE-2007-6742
Mitre link : CVE-2007-6742
CVE.ORG link : CVE-2007-6742
JSON object : View
Products Affected
ibm
- tivoli_directory_server
CWE
CWE-399
Resource Management Errors