Vulnerability Description: - When parsing a malformed LDAP extended operation, the server correctly detects and rejects the invalid request, but while processing the error, it attempts to compare the NULL operation OID with specific constants. This results in a SIGSEGV on Linux, Solaris, and Windows platforms. AIX and HP-UX allow this and respond correctly with LDAP_PROTOCOL_ERROR. Affected Software Version: - 6.0 Fix Availability: - Fixes are available for various platforms including AIX, HP-UX IA64, HP-UX PARISC, Linux, Solaris, and Windows. Fix Packages: - The fix for this APAR is contained in the following maintenance package: 6.0.0.8-TIV-ITDS-IF0004 Status: - Closed Reported Component: - IBM TIV DIR SER Known Issue Information: - APAR Number: IO11814 - Reported Component ID: 5724J3960 - Fix In Error: NoPE - Special Attention: NoSpecatt - Closed APARs: DT204569, DT204578