Tivoli support

IBM remains committed to ensuring our customers are successful with the IBM software portfolio. With the increased concern regarding software vulnerabilities and other significant issues, IBM offers several methods to promptly notify customers of these types of issues.

Proactive Notification of Security Vulnerabilities & Pervasive Issues
IBM is committed to providing customers with the information to help customers assess the impact of security vulnerabilities pervasive issues.

• A Security Vulnerability is defined as an issue with an IBM Tivoli product which can compromise a customer’s internal security measures and potentially cause financial and confidential data to be lost, damaged, or stolen. IBM’s policy is to communicate information about Security Vulnerabilities as well as issues that are incorrectly identified as a Security Vulnerability.
• A Pervasive Issue is one where a severe issue can cause an outage or instability to the customer’s deployment of an IBM Tivoli product.

To receive this type of information, edit your profile under 'MySupport' and subscribe to the product(s) that you would like to receive this type of information. Additionally, for Security Vulnerabilities, the following sources also exist:

• Using the knowledge base, Security Vulnerabilities can be found using the search string ‘Security_Vulnerability’.
• In additional to the Security Vulnerabilities listed below for IBM Tivoli products, other IBM products Security Vulnerabilities are also listed at the ResourceLink SecurityAlerts page. This site also allows a user to receive emails when new security vulnerabilities are identified. To create an account for this site, please refer to the sign-up page.
• Other forums, including, but not limited to, CERT or SecurityFocus, may also contain information about Security Vulnerabilities or Pervasive Issues.

Customers, security consultants and research teams that believe a Security Vulnerability exists with an IBM Tivoli product(s) can submit a report to IBM in the following ways:

• For existing customers, please submit a Problem Management Record
• Submit the issue as well as contact information through the Tivoli Security Coordination Team

Total of (17) Security Vulnerabilities

		Items marked with this symbol are available to customers who have purchased an IBM Passport Advantage Software Maintenance Agreement . Read about this support program here.

Tivoli Access Manager Web Plug In Logout Vulnerability   Unauthorized access to files from web servers running the Plug-In for Web Servers component of Tivoli Access Manager for eBusiness Modified:  February 06, 2006

Tivoli Access Manager Plug-in for Web Servers 6.0 Fix Pack 6.0.0-TIV-WPI-FP0001   This is a General Availability (GA) patch for a variety of problems in components that compose the AM product. Modified:  February 03, 2006

CERT Advisory CA-2002-03 - SNMP product vulnerabilities in IBM Tivoli Products   What is the status of Tivoli/IBM products' implementation of Simple Network Management Protocol (SNMP), Version 1, and the potential vulnerabilities related to the implementation as documented in CERT Advisory CA-2002-03. In the advisory the Oulu University Secure Programming Group (OUSPG, www.ee.oulu.fi/research/ouspg/) reported numerous vulnerabilities in SNMPv1 implementations. Security_Vulnerability Modified:  January 19, 2006

Tivoli Management Environment (TME) Use Of 'rexec'   Tivoli Management Environment (TME) and the use of rexec (port 512) expose a system within a DMZ environment. Modified:  December 30, 2005

Vulnerabilities with the HTTP daemon used on the Tivoli Management Framework that can cause   An incident was reported by Mark Rowe from PenTest Limited that identified vulnerabilities with the HTTP daemon used on the Tivoli Management Framework that can cause failures that prevent Tivoli Administrators from accessing the Tivoli environment. Modified:  December 18, 2005

Potential Security Vulnerability For IBM Tivoli Directory Server (VU#194753)   A potential security vulnerability has been identified by IBM for the IBM Tivoli Directory Server (ITDS), version 5.2.0 and 6.0.0. No other versions are affected. Modified:  November 09, 2005

Potential Security Vulnerability For IBM Tivoli Directory Server   A potential security vulnerability has been identified by IBM for the IBM Tivoli Directory Server (ITDS), version 5.2.0 and 6.0.0. No other versions of ITDS are affected. Modified:  November 08, 2005

Potential Security Vulnerability For IBM Tivoli Directory Server   A potential security vulnerability has been identified by IBM for the IBM Tivoli Directory Server (ITDS), version 5.2.0 and 6.0.0. IBM Tivoli Directory Integrator (ITDI) V5.2 & V6.0 shipped with ITDS V5.2. No other versions of ITDS are affected Modified:  November 08, 2005

Potential Security Vulnerability For IBM Tivoli Directory Server   A potential security vulnerability has been identified by IBM for the IBM Tivoli Directory Server (ITDS), version 5.2.0 and 6.0.0. IBM Tivoli Directory Integrator (ITDI) V5.2 & V6.0 shipped with ITDS V5.2. No other versions of ITDS are affected. Modified:  November 08, 2005

HTTP Response Splitting Vulnerability   This information is current as of August 2nd, 2004. An externally available paper has identified a form of HTTP Response Splitting exploit that can affect multiple IBM Tivoli products. IBM has determined that the affected products, listed below, can be compromised in such a way that would allow an attacker to gain access and control over IBM Access Manager for e-business and applications managed by IBM Tivoli Access Manager for e-business. Modified:  September 07, 2005

A potential Denial of Service has been identified for Tivoli Management Framework’s Endpoint   Corsaire has identified a potential Denial of Service for certain versions of the Tivoli Management Framework’s Endpoint (lcfd process). This issue is corrected, and updates are available Modified:  July 07, 2005

Potential Credential Impersonation Attack   IBM has determined that multiple IBM products can be affected by a form of credential impersonation exploit that would allow an attacker to gain access to resources and data, or gain control of the compromised application. Modified:  May 27, 2005

Potential security risk associated with the failover authentication - IBM Access Manager   IBM has identified a potential security risk associated with the failover authentication feature of the Web Server Plug-in component included as part of the IBM Access Manager for e-business product. Modified:  April 04, 2005

MIT Kerberos 5 Vulnerabilities   This information is current as of October 25th, 2004. The following security advisories reported by MIT can affect the IBM Tivoli Access Manager for e-business version 5.1 when the product is configured for single sign on using SPNEGO authentication. Modified:  January 13, 2005

No Denial of Service Vulnerability Using IBM Tivoli Access Manager for Operating Systems (AMOS),   A Denial of Service vulnerability has been reported to IBM/Tivoli suggesting that a system secured using IBM Tivoli Access Manager for Operating Systems (AMOS) will prevent authorized administrators from stopping user-initiated malicious programs from executing. This suspected vulnerability has also been reported to CERT ( http://www.cert.org/ ), which Tivoli/IBM has responded stating no such vulnerability: All versions of AMOS currently provide administrative tools to provide the ability to shutdown use Modified:  April 04, 2003

Two Potential Security Exposures Associated with the Jetty Web Server Code Components   IBM has recently discovered two potential security exposures associated with the Jetty Web server code components which are incorporated into: IBM Tivoli NetView and the ITSC module optionally installed with IBM Tivoli NetView for z/OS. Modified:  January 10, 2003

XDR_array integer buffer overflow security vulnerability   A report from the OpenAFS mailing list exposed a possible security vulnerability with an XDR_array integer buffer overflow associated with RPC library routines. Modified:  November 01, 2002