CVE-2008-2943

Name of the Vulnerable Software and Affected Versions IBM Tivoli Directory Server versions 6.1.0.0 through 6.1.0.15

Description A double free issue in IBM Tivoli Directory Server allows remote authenticated administrators to potentially cause a denial of service and possibly execute arbitrary code. This can be achieved by using ldapadd to attempt to create a duplicate ibm-globalAdminGroup LDAP database entry.

Recommendations For IBM Tivoli Directory Server versions 6.1.0.0 through 6.1.0.15, consider restricting access to the ldapadd functionality to prevent potential exploitation until a fix is available. Additionally, limit administrative LDAP requests to only those users with the necessary privileges to stop the server. At the moment, there is no information about a newer version that contains a fix for this vulnerability.