CVE-2010-4786

Name of the Vulnerable Software and Affected Versions IBM Tivoli Directory Server (TDS) versions 6.0 through 6.0.0.62

Description The issue allows remote authenticated users to cause a denial of service, resulting in a daemon crash or hang, via a paged search. This can be demonstrated by a certain idsldapsearch command and is related to an improper configuration setting of ibm-slapdIdleTimeOut.

Recommendations For IBM Tivoli Directory Server (TDS) versions 6.0 through 6.0.0.62, update to version 6.0.0.63 (aka 6.0.0.8-TIV-ITDS-IF0005) to resolve the issue.