Signature Detail

APP: IBM Tivoli Directory Server ibmslapd.exe Integer Overflow

This signature detects attempts to exploit a known vulnerability in the IBM Tivoli. A successful attack can lead to an integer buffer overflow and arbitrary remote code execution within the context of the IBM Tivoli Directory Server.

Extended Description

IBM Tivoli Directory Server is prone to a stack-based buffer-overflow and an information-disclosure vulnerability. Attackers can exploit theses issues to execute arbitrary code within the context of the affected application or retrieve potentially sensitive information.

Affected Products

• IBM Tivoli Directory Server 5.1
• IBM Tivoli Directory Server 5.2.0
• IBM Tivoli Directory Server 6.0
• IBM Tivoli Directory Server 6.0.0.21
• IBM Tivoli Directory Server 6.0.0.7
• IBM Tivoli Directory Server 6.0.0 8
• IBM Tivoli Directory Server 6.0.0.8
• IBM Tivoli Directory Server 6.0.0.8-TIV-ITDS-IF0
• IBM Tivoli Directory Server 6.1
• IBM Tivoli Directory Server 6.1.0.0
• IBM Tivoli Directory Server 6.1.0.1
• IBM Tivoli Directory Server 6.1.0 .10
• IBM Tivoli Directory Server 6.1.0 .11
• IBM Tivoli Directory Server 6.1.0 .12
• IBM Tivoli Directory Server 6.1.0 .13
• IBM Tivoli Directory Server 6.1.0 .14
• IBM Tivoli Directory Server 6.1.0 .15
• IBM Tivoli Directory Server 6.1.0.2
• IBM Tivoli Directory Server 6.1.0 .3
• IBM Tivoli Directory Server 6.1.0 .4
• IBM Tivoli Directory Server 6.1.0 .5
• IBM Tivoli Directory Server 6.1.0 .6
• IBM Tivoli Directory Server 6.1.0 .7
• IBM Tivoli Directory Server 6.1.0 .8
• IBM Tivoli Directory Server 6.1.0 .9
• IBM Tivoli Directory Server 6.2
• IBM Tivoli Directory Server 6.3

References

• BugTraq: 47121
• CVE: CVE-2011-1206