CVE-2015-1972

Name of the Vulnerable Software and Affected Versions IBM Tivoli Security Directory Server versions 6.0 before iFix 75 IBM Tivoli Security Directory Server versions 6.1 before iFix 68 IBM Tivoli Security Directory Server versions 6.2 before iFix 44 IBM Tivoli Security Directory Server versions 6.3 before iFix 37 IBM Tivoli Security Directory Server versions 6.3.1 before iFix 11 IBM Tivoli Security Directory Server versions 6.4 before iFix 2

Description The issue allows remote attackers to obtain sensitive error-log information via a crafted POST request.

Recommendations For IBM Tivoli Security Directory Server version 6.0, apply iFix 75 to resolve the issue. For IBM Tivoli Security Directory Server version 6.1, apply iFix 68 to resolve the issue. For IBM Tivoli Security Directory Server version 6.2, apply iFix 44 to resolve the issue. For IBM Tivoli Security Directory Server version 6.3, apply iFix 37 to resolve the issue. For IBM Tivoli Security Directory Server version 6.3.1, apply iFix 11 to resolve the issue. For IBM Tivoli Security Directory Server version 6.4, apply iFix 2 to resolve the issue.