CVE-2015-1959

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Directory Server
Vendor: CVE Published:; 28 June 2015

Summary

IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 does not properly restrict encrypted files, which allows local users to obtain sensitive information or possibly have unspecified other impact via a (1) download or (2) upload action.

References

http://www.securitytracker.com/id/1032734

vdb-entryx_refsource_SECTRACK

http://www-01.ibm.com/support/docview.wss?uid=swg21960659

x_refsource_CONFIRM

http://www.securityfocus.com/bid/75442

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jun 28, 2015
Vulnerability Reserved
Feb 19, 2015