Authentication Bypass and Data Modification Vulnerability in IBM Tivoli Directory Server (ITDS)

Authentication Bypass and Data Modification Vulnerability in IBM Tivoli Directory Server (ITDS)

CVE-2005-3567 · MEDIUM Severity

AV:A/AC:L/AU:N/C:P/I:P/A:P

slapd daemon in IBM Tivoli Directory Server (ITDS) 5.2.0 and 6.0.0 binds using SASL EXTERNAL, which allows attackers to bypass authentication and modify and delete directory data via unknown attack vectors.

Learn more about our Cis Benchmark Audit For Bind.