| VID |
21330 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The IBM Tivoli Directory Server is vulnerable to a directory traversal attack via the ldacgi.exe CGI. IBM Tivoli Directory Server is a lightweight LDAP server with a web-frontend. IBM Tivoli Directory Server versions 3.2.2 and 4.1 could allow a remote attacker to traverse directories on the Web server using the ldacgi.exe CGI, which is the administrative interface. A remote attacker could send a specially-crafted URL containing "dot dot" sequences (../) to the ldacgi.exe CGI to traverse directories and view arbitrary files on the affected server.
* References:
http://archives.neohapsis.com/archives/fulldisclosure/2004-07/1311.html
http://www.oliverkarow.de/research/IDS_directory_traversal.txt
* Platforms Affected:
IBM Tivoli Directory Server 3.2.2
IBM Tivoli Directory Server 4.1
Microsoft Windows Any version |
| Recommendation |
For IBM Tivoli Directory Server 3.2.2:
Apply Fix Pack 4, available from the IBM APAR IR53631 at http://www-1.ibm.com/support/docview.wss?uid=swg1IR53631
For IBM Tivoli Directory Server 4.1:
Apply Fix Pack 3, available from the IBM APAR IR52692 at http://www-1.ibm.com/support/docview.wss?uid=isg1IR52692 |
| Related URL |
CVE-2004-2526 (CVE) |
| Related URL |
10841 (SecurityFocus) |
| Related URL |
16850 (ISS) |
|
