PT-2016-3654 · Ibm · Ibm Security Access Manager For Web
Chris Shepherd
+5
·
Publicado
2016-02-15
·
Atualizado
2016-03-11
·
CVE-2015-5012
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Security Access Manager for Web appliances versions 7.0 through 7.0.0 FP18
IBM Security Access Manager for Web appliances versions 8.0 through 8.0.1.3 IF2
IBM Security Access Manager for Web appliances versions 9.0 through 9.0.0.0 IF0
Description
The SSH implementation does not properly restrict the set of MAC algorithms, making it easier for remote attackers to defeat cryptographic protection mechanisms.
Recommendations
For versions 7.0 through 7.0.0 FP18, update to version 7.0.0 FP19 or later.
For versions 8.0 through 8.0.1.3 IF2, update to version 8.0.1.3 IF3 or later.
For versions 9.0 through 9.0.0.0 IF0, update to version 9.0.0.0 IF1 or later.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Security Access Manager For Web