Vulnerability Description
IBM GSKit 7.x before 7.0.4.48 and 8.x before 8.0.50.16, as used in IBM Security Directory Server (ISDS) and Tivoli Directory Server (TDS), allows remote attackers to cause a denial of service (application crash or hang) via a malformed X.509 certificate chain.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Global Security Kit | 8.5 |
| Ibm | Security Directory Server | - |
| Ibm | Tivoli Directory Server | - |
Related Weaknesses (CWE)
References
- http://osvdb.org/102556
- http://secunia.com/advisories/56698
- http://secunia.com/advisories/56699
- http://www-01.ibm.com/support/docview.wss?uid=swg21662902Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21669554Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21676091Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21676092Vendor Advisory
- http://www.securitytracker.com/id/1029687
- https://exchange.xforce.ibmcloud.com/vulnerabilities/89863
- http://osvdb.org/102556
- http://secunia.com/advisories/56698
- http://secunia.com/advisories/56699
- http://www-01.ibm.com/support/docview.wss?uid=swg21662902Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21669554Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21676091Vendor Advisory
FAQ
What is CVE-2013-6747?
CVE-2013-6747 is a vulnerability with a CVSS score of 7.1 (HIGH). IBM GSKit 7.x before 7.0.4.48 and 8.x before 8.0.50.16, as used in IBM Security Directory Server (ISDS) and Tivoli Directory Server (TDS), allows remote attackers to cause a denial of service (applica...
How severe is CVE-2013-6747?
CVE-2013-6747 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-6747?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Global Security Kit, Ibm Security Directory Server, Ibm Tivoli Directory Server.