Vulnerability in IBM Tivoli Security Directory Server Allows Information Exposure
CVE-2015-2019

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Directory Server
Vendor: CVE Published:; 28 June 2015

Summary

The IBM Tivoli Security Directory Server is susceptible to an information exposure through improper caching of documents retrieved during SSL sessions. This vulnerability permits unauthorized individuals, particularly those with physical access to unattended workstations, to obtain sensitive information that should otherwise remain secure. Affected versions of the server include multiple iterations prior to specific update releases, highlighting the criticality for users to upgrade to maintain robust security protection against potential data breaches.

References

http://www.securitytracker.com/id/1032734

vdb-entryx_refsource_SECTRACK

http://www-01.ibm.com/support/docview.wss?uid=swg21960659

x_refsource_CONFIRM

http://www.securityfocus.com/bid/75437

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jun 28, 2015
Vulnerability Reserved
Feb 19, 2015