CVE-2011-1224

Name of the Vulnerable Software and Affected Versions IBM WebSphere MQ versions 6.0 through 6.0.2.10 IBM WebSphere MQ versions 7.0 through 7.0.1.4

Description The issue allows man-in-the-middle attackers to potentially spoof an SSL partner via a revoked certificate for a client, queue manager, or application, because it does not use the CRL Distribution Points (CDP) certificate extension.

Recommendations For IBM WebSphere MQ versions 6.0 through 6.0.2.10, update to version 6.0.2.11 or later. For IBM WebSphere MQ versions 7.0 through 7.0.1.4, update to version 7.0.1.5 or later.