CVE-2008-7288

Name of the Vulnerable Software and Affected Versions IBM Tivoli Directory Server (TDS) versions 5.2 through 5.2.0.5-TIV-ITDS-LA0007

Description The issue allows remote attackers to cause a denial of service, leading to server destabilization. This is achieved through an anonymous DIGEST-MD5 LDAP Bind operation.

Recommendations For IBM Tivoli Directory Server (TDS) versions 5.2 through 5.2.0.5-TIV-ITDS-LA0007, update to version 5.2.0.5-TIV-ITDS-LA0007 or later to resolve the issue. As a temporary workaround, consider restricting anonymous DIGEST-MD5 LDAP Bind operations to minimize the risk of exploitation.