[VIM] Multiple IBM Tivoli documents leading to same issue
Steven M. Christey
coley at mitre.org
Wed Nov 30 19:01:05 EST 2005
FYI, iDEFENSE noticed some possible CVE dupes regarding IBM Tivoli
Directory Server. These dupes arose from different IBM documents, one
with a very vague description, and the other with a more detailed
description, and neither seeming to refer to the other.
I did some digging and they lead to the same APARs.
Maybe this will help save other people some analytical effort and/or
prevent their own dupes. See the references in CVE-2005-3567 below.
slapd daemon in IBM Tivoli Directory Server (ITDS) 5.2.0 and 6.0.0
binds using SASL EXTERNAL, which allows attackers to bypass
authentication and modify and delete directory data via unknown attack
** REJECT **
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-3567. Reason:
This candidate is a reservation duplicate of CVE-2005-3567. Notes:
All CVE users should reference CVE-2005-3567 instead of this
candidate. All references and descriptions in this candidate have
been removed to prevent accidental usage.
More information about the VIM