Vulnerability Name:

CVE-2005-3567 (CCN-22989)

Assigned:2005-11-09
Published:2005-11-09
Updated:2017-07-11
Summary:slapd daemon in IBM Tivoli Directory Server (ITDS) 5.2.0 and 6.0.0 binds using SASL EXTERNAL, which allows attackers to bypass authentication and modify and delete directory data via unknown attack vectors.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:5.8 Medium (CVSS v2 Vector: AV:A/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-264
Vulnerability Consequences:Bypass Security
References:Source: MITRE
Type: CNA
CVE-2005-3567

Source: CCN
Type: SA17484
IBM Tivoli Directory Server Unspecified Security Bypass Vulnerability

Source: SECUNIA
Type: Patch, Vendor Advisory
17484

Source: CCN
Type: SECTRACK ID: 1015171
IBM Tivoli Directory Server Unspecified SLAPD Binding Error May Let Remote Users Modify/Delete Data

Source: SECTRACK
Type: Patch
1015171

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www-1.ibm.com/support/docview.wss?rs=767&context=SSVJJU&dc=D400&uid=swg24010819&loc=en_US&cs=UTF-8&lang=en

Source: CONFIRM
Type: UNKNOWN
http://www-1.ibm.com/support/docview.wss?uid=isg1SSRVAIX53SECUR081510_247

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg21222159

Source: CCN
Type: IBM APAR IO02714
IBM Tivoli Directory Server, Version 6.0.0.1-TIV-ITDS-IF0001

Source: CCN
Type: IBM Reference 4010819
IBM Tivoli Directory Server, Version 6.0.0.1-TIV-ITDS-IF0001

Source: AIXAPAR
Type: UNKNOWN
IO02697

Source: AIXAPAR
Type: UNKNOWN
IO02714

Source: CCN
Type: US-CERT VU#194753
IBM Tivoli Directory Server may allow unauthorized access

Source: CERT-VN
Type: US Government Resource
VU#194753

Source: OSVDB
Type: Patch
20672

Source: CCN
Type: OSVDB ID: 20672
IBM Tivoli Directory Server Unspecified Data Modification

Source: BID
Type: Patch
15367

Source: CCN
Type: BID-15367
IBM Tivoli Directory Server Unspecified Unauthorized Access Vulnerability

Source: VUPEN
Type: Vendor Advisory
ADV-2005-2356

Source: XF
Type: UNKNOWN
tivoli-directory-bypass-security(22989)

Source: XF
Type: UNKNOWN
tivoli-directory-bypass-security(22989)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:ibm:tivoli_directory_server:5.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_directory_server:6.0:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:ibm:tivoli_access_manager_for_e-business:5.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_identity_manager:4.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_directory_server:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_directory_server:5.2.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    ibm tivoli directory server 5.2.0
    ibm tivoli directory server 6.0
    ibm tivoli access manager for e-business 5.1
    ibm tivoli identity manager 4.6
    ibm tivoli directory server 6.0
    ibm tivoli directory server 5.2.0