CVE-2015-1959

Name of the Vulnerable Software and Affected Versions IBM Tivoli Security Directory Server versions 6.0 through 6.0 before iFix 75 IBM Tivoli Security Directory Server versions 6.1 through 6.1 before iFix 68 IBM Tivoli Security Directory Server versions 6.2 through 6.2 before iFix 44 IBM Tivoli Security Directory Server versions 6.3 through 6.3 before iFix 37 IBM Tivoli Security Directory Server versions 6.3.1 through 6.3.1 before iFix 11 IBM Tivoli Security Directory Server versions 6.4 through 6.4 before iFix 2

Description The issue allows local users to obtain sensitive information or possibly have unspecified other impact via a download or upload action, due to improper restriction of encrypted files.

Recommendations For version 6.0, apply iFix 75 to resolve the issue. For version 6.1, apply iFix 68 to resolve the issue. For version 6.2, apply iFix 44 to resolve the issue. For version 6.3, apply iFix 37 to resolve the issue. For version 6.3.1, apply iFix 11 to resolve the issue. For version 6.4, apply iFix 2 to resolve the issue.