CVE-2015-2019

Name of the Vulnerable Software and Affected Versions IBM Tivoli Security Directory Server versions 6.0 through 6.0 before iFix 75 IBM Tivoli Security Directory Server versions 6.1 through 6.1 before iFix 68 IBM Tivoli Security Directory Server versions 6.2 through 6.2 before iFix 44 IBM Tivoli Security Directory Server versions 6.3 through 6.3 before iFix 37 IBM Tivoli Security Directory Server versions 6.3.1 through 6.3.1 before iFix 11 IBM Tivoli Security Directory Server versions 6.4 through 6.4 before iFix 2

Description The issue allows physically proximate attackers to obtain sensitive information by leveraging an unattended workstation, due to the failure to prevent caching of documents retrieved in SSL sessions.

Recommendations For version 6.0, apply iFix 75 to resolve the issue. For version 6.1, apply iFix 68 to resolve the issue. For version 6.2, apply iFix 44 to resolve the issue. For version 6.3, apply iFix 37 to resolve the issue. For version 6.3.1, apply iFix 11 to resolve the issue. For version 6.4, apply iFix 2 to resolve the issue.