Information disclosure in Ibm Tivoli_directory_server

CVE-2015-1972

IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 allows remote attackers to obtain sensitive error-log information via a crafte…

Vulnerability class: Information Disclosure

EPSS: 0.003 (57.2th percentile) — read the EPSS interpretation.

Affected products

Ibm Tivoli_directory_server — versions 6.0, 6.1.0, 6.2.0.0
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

1032734 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
psirt@us.ibm.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
75441 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)