Denial of Service Vulnerability in IBM Lotus Mobile Connect

Denial of Service Vulnerability in IBM Lotus Mobile Connect

CVE-2010-4593 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

The Connection Manager in IBM Lotus Mobile Connect before 6.1.4 does not properly maintain a certain reference count, which allows remote authenticated users to cause a denial of service (IP address exhaustion) by making invalid attempts to establish sessions with the same VPN ID from multiple devices.

Learn more about our Cis Benchmark Audit For Ibm I.