Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1822

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2011-1822
Last Modified 21 Apr 2011 12:00:00
Published 21 Apr 2011 06:55:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2011-1822

Summary

The LDAP_ADD implementation in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0009 stores a cleartext SHA password in the change log, which might allow local users to obtain sensitive information by reading this log.

Vulnerable Systems

Application

  • Ibm Tivoli Directory Server 5.2.0

  • Ibm Tivoli Directory Server 5.2.0.4


References

CONFIRM - http://www.ibm.com/support/docview.wss?uid=swg24029663

AIXAPAR - IO11882


Last Updated: 27 May 2016 10:56:49