Unattended Workstation Login Vulnerability in IBM Tivoli Directory Server

Unattended Workstation Login Vulnerability in IBM Tivoli Directory Server

CVE-2011-2759 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The login page of IDSWebApp in the Web Administration Tool in IBM Tivoli Directory Server (TDS) 6.2 before 6.2.0.3-TIV-ITDS-IF0004 does not have an off autocomplete attribute for authentication fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.

Learn more about our Cis Benchmark Audit For Ibm I.