CVE-2017-18268

Name of the Vulnerable Software and Affected Versions: Symantec IntelligenceCenter version 3.3

Description: The issue allows a remote attacker to establish large numbers of crafted SSL connections to the target and obtain the session keys required to decrypt a pre-recorded SSL session, by exploiting the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. This can be done if the attacker has captured a pre-recorded SSL session inspected by SSLV.

Recommendations: For Symantec IntelligenceCenter version 3.3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.