PT-2015-3841 · Ibm · Ibm Rational Clearcase+1
Publicado
2015-04-06
·
Atualizado
2016-11-28
·
CVE-2014-6221
CVSS v2.0
9.4
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Rational ClearCase versions 7.1.2.x through 7.1.2.16
IBM Rational ClearCase versions 8.0.0.x through 8.0.0.13
IBM Rational ClearCase versions 8.0.1.x through 8.0.1.6
Description
The issue is related to the MSCAPI/MSCNG interface implementation in GSKit, which does not properly generate random numbers. This makes it easier for remote attackers to defeat cryptographic protection mechanisms.
Recommendations
For IBM Rational ClearCase versions 7.1.2.x through 7.1.2.16, update to version 7.1.2.17 or later.
For IBM Rational ClearCase versions 8.0.0.x through 8.0.0.13, update to version 8.0.0.14 or later.
For IBM Rational ClearCase versions 8.0.1.x through 8.0.1.6, update to version 8.0.1.7 or later.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Gskit
Ibm Rational Clearcase