CVE-2015-1975

Name of the Vulnerable Software and Affected Versions IBM Tivoli Security Directory Server versions 6.0 before iFix 75 IBM Tivoli Security Directory Server versions 6.1 before iFix 68 IBM Tivoli Security Directory Server versions 6.2 before iFix 44 IBM Tivoli Security Directory Server versions 6.3 before iFix 37 IBM Security Directory Server versions 6.3.1 before iFix 11 IBM Security Directory Server versions 6.4 before iFix 2

Description The web administration tool in the affected software allows local users to gain privileges via vectors related to argument injection.

Recommendations For IBM Tivoli Security Directory Server version 6.0, apply iFix 75 to resolve the issue. For IBM Tivoli Security Directory Server version 6.1, apply iFix 68 to resolve the issue. For IBM Tivoli Security Directory Server version 6.2, apply iFix 44 to resolve the issue. For IBM Tivoli Security Directory Server version 6.3, apply iFix 37 to resolve the issue. For IBM Security Directory Server version 6.3.1, apply iFix 11 to resolve the issue. For IBM Security Directory Server version 6.4, apply iFix 2 to resolve the issue.