CVE-2009-3090

Unspecified vulnerability in IBM Tivoli Directory Server (TDS) 6.0 on Linux allows remote attackers to cause a denial of service via unknown vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.11. NOTE: as of 20090903, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://intevydis.com/vd-list.shtml
http://secunia.com/advisories/36565	Vendor Advisory
http://intevydis.com/vd-list.shtml
http://secunia.com/advisories/36565	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:ibm:tivoli_directory_server:6.0:*:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:06

Type	Values Removed	Values Added
References	~~() http://intevydis.com/vd-list.shtml -~~	() http://intevydis.com/vd-list.shtml -
References	~~() http://secunia.com/advisories/36565 - Vendor Advisory~~	() http://secunia.com/advisories/36565 - Vendor Advisory

Information

Published : 2009-09-08 18:30

Updated : 2024-11-21 01:06

NVD link : CVE-2009-3090

Mitre link : CVE-2009-3090

CVE.ORG link : CVE-2009-3090

JSON object : View

Products Affected

ibm

tivoli_directory_server

linux

linux_kernel

CWE

NVD-CWE-noinfo

{"id": "CVE-2009-3090", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": true, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2009-09-08T18:30:00.547", "references": [{"url": "http://intevydis.com/vd-list.shtml", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/36565", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://intevydis.com/vd-list.shtml", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/36565", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in IBM Tivoli Directory Server (TDS) 6.0 on Linux allows remote attackers to cause a denial of service via unknown vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.11. NOTE: as of 20090903, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes."}, {"lang": "es", "value": "Vulnerabilidad no especificada en IBM Tivoli Directory Server (TDS) v6.0 para Linux permite a atacantes remotos provocar una denegaci\u00f3n de servicio mediante vectores no especificados, como se ha demostrado por cierto m\u00f3dulo en VulnDisco Pack Professional 8.11. NOTA: hasta el 3-3-2009, esta divulgaci\u00f3n no ten\u00eda informaci\u00f3n para su puesta en pr\u00e1ctica. En cualquier caso, como el autor de VulnDisco Pack es un investigador reputado, se ha asignado un identificador CVE con fines de seguimiento."}], "lastModified": "2024-11-21T01:06:30.900", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1EF905E9-DDA5-4369-AC6C-FD6E2573E667"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}