Vulnerability-Lookup

CERTA-2005-AVI-446

Vulnerability from certfr_avis - Published: 2005-11-09 - Updated: 2005-11-09

None

Description

Une vulnérabilité a été découverte dans IBM Tivoli Directory Server (ITDS), permettant de modifier ou d'effacer des données.

Solution

Appliquer le correctif de l'éditeur (voir Documentation).

None

Impacted products

Vendor	Product	Description
IBM	Tivoli	IBM Tivoli Directory Server 5.x ;
IBM	Tivoli	IBM Tivoli Access Manager for Business Integration 5.x ;
IBM	Tivoli	IBM Tivoli Directory Integrator 5.x ;
IBM	Tivoli	IBM Tivoli Directory Server 6.x.
IBM	Tivoli	IBM Tivoli Federated Identity Manager 6.x ;
IBM	Tivoli	IBM Tivoli Access Manager for Operating Systems 5.x ;
IBM	Tivoli	IBM Tivoli Access Manager for e-business 5.x ;
IBM	Tivoli	IBM Tivoli Directory Integrator 6.x ;
IBM	Tivoli	IBM Tivoli Identity Manager 4.x ;

References

Title

Publication Time

Tags

Bulletins de sécurité IBM	None	vendor-advisory
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Correctif pour ITDS version 6.0.0.1-TIV-ITDS-IF0001 :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Correctif pour ITDS version 5.2.03-TIV-ITDS-IF0007 :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Correctif pour ITDS versions 5.2.0.3-TIV-ITDS-IF0001 ou antérieures :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "IBM Tivoli Directory Server 5.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Access Manager for Business Integration 5.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Directory Integrator 5.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Directory Server 6.x.",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Federated Identity Manager 6.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Access Manager for Operating Systems 5.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Access Manager for e-business 5.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Directory Integrator 6.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Identity Manager 4.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans IBM Tivoli Directory Server\n(ITDS), permettant de modifier ou d\u0027effacer des donn\u00e9es.\n\n## Solution\n\nAppliquer le correctif de l\u0027\u00e9diteur (voir Documentation).\n",
  "cves": [],
  "initial_release_date": "2005-11-09T00:00:00",
  "last_revision_date": "2005-11-09T00:00:00",
  "links": [
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222125"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222133"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222129"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222126"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222124"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222130"
    },
    {
      "title": "Correctif pour ITDS version 6.0.0.1-TIV-ITDS-IF0001 :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq24010819"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21221665"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222131"
    },
    {
      "title": "Correctif pour ITDS version 5.2.03-TIV-ITDS-IF0007 :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq24010821"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222132"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222127"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222128"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222123"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222159"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222172"
    },
    {
      "title": "Correctif pour ITDS versions 5.2.0.3-TIV-ITDS-IF0001 ou    ant\u00e9rieures :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq24010820"
    }
  ],
  "reference": "CERTA-2005-AVI-446",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2005-11-09T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": null,
  "title": "Vuln\u00e9rabilit\u00e9 dans IBM Tivoli Directory Server",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletins de s\u00e9curit\u00e9 IBM",
      "url": null
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted