CVE-2009-5072
Published Apr 21, 2011
Last updated 14 years ago
Overview
- Description
- Memory leak in the ldap_explode_dn function in IBM Tivoli Directory Server (TDS) 6.0 before 6.0.0.61 (aka 6.0.0.8-TIV-ITDS-IF0003) allows remote authenticated users to cause a denial of service (memory consumption) via an empty string argument.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4
- Impact score
- 2.9
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-399
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1EF905E9-DDA5-4369-AC6C-FD6E2573E667"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "04980717-662D-4BB1-B52E-65ED0773080A"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "08B63191-A886-445B-8DF7-DAFB60F32343"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5AD57EC4-40A8-432F-B3B0-96941779B96A"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "574CF7FC-A438-468B-9B4C-4355005D363F"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DF13A015-1EED-4BB1-97CF-84CF67A2D74B"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C1C81618-2FD8-49B1-9864-4A1C7501A162"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.33:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "92805FE4-9E5A-4366-8AB9-C846A355E9E6"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.41:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1BB961FA-0305-4D2B-90A1-BE63903D16AA"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.45:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7B29CF8D-410F-4FF7-BAB3-7541E7C1EA5E"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.52:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8E435108-AEE8-4FB3-BD46-E34B3E1E8F2A"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.53:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ECF9F5BF-FE5A-403E-A661-04673F5390A5"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.54:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8E857FD0-DCD1-4194-8F08-500B118088FE"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.55:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "460ADE05-414D-4870-A192-AA66911B71F5"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.56:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4C9DA0B9-4554-4B06-B55E-08401CFD84D4"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.57:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7643F50F-4A2E-45F4-A12A-D5F1E3A10C4B"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.58:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DE7B4F0B-0801-4808-A849-466753701523"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.59:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DE04E834-CC79-405D-B885-C56192F0038C"
},
{
"criteria": "cpe:2.3:a:ibm:tivoli_directory_server:6.0.0.60:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F11078B5-078C-4069-8288-B8A34D2635DA"
}
],
"operator": "OR"
}
]
}
]