Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1820

Overview

Vulnerability Score 1.7 1.7
CVE Id CVE-2011-1820
Last Modified 21 Apr 2011 12:00:00
Published 21 Apr 2011 06:55:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2011-1820

Summary

IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0010, 6.0 before 6.0.0.67 (aka 6.0.0.8-TIV-ITDS-IF0009), 6.1 before 6.1.0.40 (aka 6.1.0.5-TIV-ITDS-IF0003), 6.2 before 6.2.0.16 (aka 6.2.0.3-TIV-ITDS-IF0002), and 6.3 before 6.3.0.3 (aka 6.3.0.0-TIV-ITDS-IF0003) does not properly handle the ibm-auditAttributesOnGroupEvalOp setting for auditing of extended operations, which might allow attackers to obtain sensitive information by reading the audit log.

Vulnerable Systems

Application

  • Ibm Tivoli Directory Server 5.2.0

  • Ibm Tivoli Directory Server 5.2.0.4

  • Ibm Tivoli Directory Server 6.0

  • Ibm Tivoli Directory Server 6.0.0.0

  • Ibm Tivoli Directory Server 6.0.0.1

  • Ibm Tivoli Directory Server 6.0.0.14

  • Ibm Tivoli Directory Server 6.0.0.19

  • Ibm Tivoli Directory Server 6.0.0.33

  • Ibm Tivoli Directory Server 6.0.0.41

  • Ibm Tivoli Directory Server 6.0.0.45

  • Ibm Tivoli Directory Server 6.0.0.52

  • Ibm Tivoli Directory Server 6.0.0.53

  • Ibm Tivoli Directory Server 6.0.0.54

  • Ibm Tivoli Directory Server 6.0.0.55

  • Ibm Tivoli Directory Server 6.0.0.56

  • Ibm Tivoli Directory Server 6.0.0.57

  • Ibm Tivoli Directory Server 6.0.0.58

  • Ibm Tivoli Directory Server 6.0.0.59

  • Ibm Tivoli Directory Server 6.0.0.60

  • Ibm Tivoli Directory Server 6.0.0.61

  • Ibm Tivoli Directory Server 6.0.0.62

  • Ibm Tivoli Directory Server 6.0.0.63

  • Ibm Tivoli Directory Server 6.0.0.64

  • Ibm Tivoli Directory Server 6.0.0.65

  • Ibm Tivoli Directory Server 6.0.0.66

  • Ibm Tivoli Directory Server 6.0.0.7

  • Ibm Tivoli Directory Server 6.0.0.8

  • Ibm Tivoli Directory Server 6.1.0.0

  • Ibm Tivoli Directory Server 6.1.0.1

  • Ibm Tivoli Directory Server 6.1.0.10

  • Ibm Tivoli Directory Server 6.1.0.11

  • Ibm Tivoli Directory Server 6.1.0.12

  • Ibm Tivoli Directory Server 6.1.0.13

  • Ibm Tivoli Directory Server 6.1.0.14

  • Ibm Tivoli Directory Server 6.1.0.15

  • Ibm Tivoli Directory Server 6.1.0.17

  • Ibm Tivoli Directory Server 6.1.0.18

  • Ibm Tivoli Directory Server 6.1.0.19

  • Ibm Tivoli Directory Server 6.1.0.2

  • Ibm Tivoli Directory Server 6.1.0.20

  • Ibm Tivoli Directory Server 6.1.0.21

  • Ibm Tivoli Directory Server 6.1.0.22

  • Ibm Tivoli Directory Server 6.1.0.23

  • Ibm Tivoli Directory Server 6.1.0.24

  • Ibm Tivoli Directory Server 6.1.0.25

  • Ibm Tivoli Directory Server 6.1.0.26

  • Ibm Tivoli Directory Server 6.1.0.27

  • Ibm Tivoli Directory Server 6.1.0.28

  • Ibm Tivoli Directory Server 6.1.0.29

  • Ibm Tivoli Directory Server 6.1.0.3

  • Ibm Tivoli Directory Server 6.1.0.30

  • Ibm Tivoli Directory Server 6.1.0.31

  • Ibm Tivoli Directory Server 6.1.0.32

  • Ibm Tivoli Directory Server 6.1.0.33

  • Ibm Tivoli Directory Server 6.1.0.34

  • Ibm Tivoli Directory Server 6.1.0.35

  • Ibm Tivoli Directory Server 6.1.0.36

  • Ibm Tivoli Directory Server 6.1.0.37

  • Ibm Tivoli Directory Server 6.1.0.38

  • Ibm Tivoli Directory Server 6.1.0.39

  • Ibm Tivoli Directory Server 6.1.0.4

  • Ibm Tivoli Directory Server 6.1.0.5

  • Ibm Tivoli Directory Server 6.1.0.6

  • Ibm Tivoli Directory Server 6.1.0.7

  • Ibm Tivoli Directory Server 6.1.0.8

  • Ibm Tivoli Directory Server 6.1.0.9

  • Ibm Tivoli Directory Server 6.2.0.0

  • Ibm Tivoli Directory Server 6.2.0.1

  • Ibm Tivoli Directory Server 6.2.0.10

  • Ibm Tivoli Directory Server 6.2.0.11

  • Ibm Tivoli Directory Server 6.2.0.12

  • Ibm Tivoli Directory Server 6.2.0.13

  • Ibm Tivoli Directory Server 6.2.0.14

  • Ibm Tivoli Directory Server 6.2.0.15

  • Ibm Tivoli Directory Server 6.2.0.2

  • Ibm Tivoli Directory Server 6.2.0.3

  • Ibm Tivoli Directory Server 6.2.0.4

  • Ibm Tivoli Directory Server 6.2.0.5

  • Ibm Tivoli Directory Server 6.2.0.6

  • Ibm Tivoli Directory Server 6.2.0.7

  • Ibm Tivoli Directory Server 6.2.0.8

  • Ibm Tivoli Directory Server 6.3.0.0

  • Ibm Tivoli Directory Server 6.3.0.1

  • Ibm Tivoli Directory Server 6.3.0.2


References

CONFIRM - http://www.ibm.com/support/docview.wss?uid=swg24029672

CONFIRM - http://www.ibm.com/support/docview.wss?uid=swg24029663

CONFIRM - http://www.ibm.com/support/docview.wss?uid=swg24029661

CONFIRM - http://www.ibm.com/support/docview.wss?uid=swg24029660

CONFIRM - http://www.ibm.com/support/docview.wss?uid=swg24029659

XF - ibm-tds-proxyserver-info-disclosure(66712)

CONFIRM - http://www.ibm.com/support/docview.wss?uid=swg21496086

AIXAPAR - IO14044

AIXAPAR - IO14043

AIXAPAR - IO14028

AIXAPAR - IO14025

AIXAPAR - IO14023

SECTRACK - 1025358

SECUNIA - 44184


Last Updated: 27 May 2016 10:56:49