certfr_avis - certa-2005-avi-446

CERTA-2005-AVI-446

Vulnerability from certfr_avis

None

Description

Une vulnérabilité a été découverte dans IBM Tivoli Directory Server (ITDS), permettant de modifier ou d'effacer des données.

Solution

Appliquer le correctif de l'éditeur (voir Documentation).

None

Impacted products

Vendor	Product	Description
IBM	Tivoli	IBM Tivoli Directory Server 5.x ;
IBM	Tivoli	IBM Tivoli Access Manager for Business Integration 5.x ;
IBM	Tivoli	IBM Tivoli Directory Integrator 5.x ;
IBM	Tivoli	IBM Tivoli Directory Server 6.x.
IBM	Tivoli	IBM Tivoli Federated Identity Manager 6.x ;
IBM	Tivoli	IBM Tivoli Access Manager for Operating Systems 5.x ;
IBM	Tivoli	IBM Tivoli Access Manager for e-business 5.x ;
IBM	Tivoli	IBM Tivoli Directory Integrator 6.x ;
IBM	Tivoli	IBM Tivoli Identity Manager 4.x ;

References

Title

Publication Time

Tags

Bulletins de sécurité IBM	None	vendor-advisory
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Correctif pour ITDS version 6.0.0.1-TIV-ITDS-IF0001 :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Correctif pour ITDS version 5.2.03-TIV-ITDS-IF0007 :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Bulletins de sécurité d'IBM :	-	other
Correctif pour ITDS versions 5.2.0.3-TIV-ITDS-IF0001 ou antérieures :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "IBM Tivoli Directory Server 5.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Access Manager for Business Integration 5.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Directory Integrator 5.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Directory Server 6.x.",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Federated Identity Manager 6.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Access Manager for Operating Systems 5.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Access Manager for e-business 5.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Directory Integrator 6.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Identity Manager 4.x ;",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans IBM Tivoli Directory Server\n(ITDS), permettant de modifier ou d\u0027effacer des donn\u00e9es.\n\n## Solution\n\nAppliquer le correctif de l\u0027\u00e9diteur (voir Documentation).\n",
  "cves": [],
  "initial_release_date": "2005-11-09T00:00:00",
  "last_revision_date": "2005-11-09T00:00:00",
  "links": [
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222125"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222133"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222129"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222126"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222124"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222130"
    },
    {
      "title": "Correctif pour ITDS version 6.0.0.1-TIV-ITDS-IF0001 :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq24010819"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21221665"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222131"
    },
    {
      "title": "Correctif pour ITDS version 5.2.03-TIV-ITDS-IF0007 :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq24010821"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222132"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222127"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222128"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222123"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222159"
    },
    {
      "title": "Bulletins de s\u00e9curit\u00e9 d\u0027IBM :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq21222172"
    },
    {
      "title": "Correctif pour ITDS versions 5.2.0.3-TIV-ITDS-IF0001 ou    ant\u00e9rieures :",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swq24010820"
    }
  ],
  "reference": "CERTA-2005-AVI-446",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2005-11-09T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": null,
  "title": "Vuln\u00e9rabilit\u00e9 dans IBM Tivoli Directory Server",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletins de s\u00e9curit\u00e9 IBM",
      "url": null
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted