There are multiple vulnerabilities in IBM Runtime Environment Java Technology Edition, Version 6 that is used by Rational Directory Administrator. These issues were disclosed as part of the IBM Java SDK updates in April 2015.
CVEID:CVE-2015-0488**
DESCRIPTION: *An unspecified vulnerability related to the JSSE component could allow a remote attacker to cause a denial of service.
CVSS Base Score: 5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/102336> for the current score
CVSS Environmental Score: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVEID: CVE-2015-1916**
DESCRIPTION: *Server applications which use the IBM Java Secure Socket Extension provider to accept SSL/TLS connections are vulnerable to a denial of service attack due to an unspecified vulnerability.
CVSS Base Score: 5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/101995> for the current score
CVSS Environmental Score: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Product
| Version
—|—
Rational Directory Administrator| 6.0 - 6.0.0.2_iFix02
Product
| Download link
—|—
IBM Rational Directory Administrator 6.0 and above| RDA 6.0.0.2 iFix03
None