IBM Tivoli Directory Server Double-Free Vulnerability - Advisories - Secunia
TivoliのDirecory ServerにDoSを受ける脆弱性が存在するそうです。
脆弱性を悪用したらDoSでDirectoryサーバを落とせる上、LDAP管理者権限があれば任意のコマンドが実行可能との事。
A vulnerability has been reported in IBM Tivoli Directory Server, which can be exploited by malicious users to cause a DoS (Denial of Service).
Security Advisory SA30786 - IBM Tivoli Directory Server Double-Free Vulnerability - Secunia
The vulnerability is caused due to a double-free error when handling certain requests and can be exploited by adding e.g. a certain existing entry via ldapadd.
Successful exploitation allows to crash the server and potentially to execute arbitrary code, but requires ldap administrator privileges.
