This script is Copyright (C) 2010-2015 Tenable Network Security, Inc.
The remote installation of Tivoli Directory Server stores the login
and password of the DB2 database in a plaintext log file.
The remote installation of Tivoli Directory Server created a file
called 'ldapinst.log' that contains the login and password of the IBM
DB2 database used for this service.
An attacker who could get access to this file (or a backup of it)
would be able to log into the DB2 database and modify its content or
See also :
Apply the patch from IBM or delete the file.
Risk factor :
Low / CVSS Base Score : 3.8
CVSS Temporal Score : 3.1
Public Exploit Available : true