The host is running IBM Tivoli Directory Server and is prone to denial of service vulnerability.

Successful exploitation will allow attacker to crash an affected server, creating a denial of service condition. Impact Level: Application

Apply interim fix 6.0.0.8-TIV-ITDS-IF0007 or 6.1.0-TIV-ITDS-FP0005. https://www-304.ibm.com/support/docview.wss?uid=swg1IO13364 https://www-304.ibm.com/support/docview.wss?uid=swg1IO13282

The flaw is is caused by an error in the Proxy server when constructing LDAP search requests, which could allow remote attackers to crash an affected server by sending an unbind operation during a page results search.

IBM Tivoli Directory Server (TDS) 6.0.0.x before 6.0.0.8-TIV-ITDS-IF0007 and 6.1.x before 6.1.0-TIV-ITDS-FP0005.

• http://osvdb.org/68964
• http://secunia.com/advisories/42083
• http://securitytracker.com/alerts/2010/Nov/1024670.html
• http://www.vupen.com/english/advisories/2010/2861

---

Updated on 2015-03-25