Vulnerability Details : CVE-2010-0922
Unspecified vulnerability in secldapclntd in IBM AIX 5.3 with SP 5300-11-02 allows attackers to cause a denial of service (LDAP login failure) via unknown vectors. NOTE: some of these details are obtained from third party information. NOTE: there may be no attacker role, and the issue may be triggered entirely by an administrator's installation of an official service pack.
Vulnerability category: Denial of service
Exploit prediction scoring system (EPSS) score for CVE-2010-0922
Probability of exploitation activity in the next 30 days: 0.12%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 45 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-0922
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
References for CVE-2010-0922
-
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4956
-
ftp://public.dhe.ibm.com/aix/efixes/iz69977/README.txt
-
http://www.securityfocus.com/bid/38444
IBM AIX LDAP Login Local Denial of Service Vulnerability
-
http://www.ibm.com/support/docview.wss?uid=isg1IZ69977
IBM IZ69977: LDAP USERS ARE UNABLE TO LOGIN APPLIES TO AIX 5300-11
Products affected by CVE-2010-0922
- cpe:2.3:o:ibm:aix:5.3:sp5300-11-02:*:*:*:*:*:*