CVE-2013-6329

Name of the Vulnerable Software and Affected Versions IBM Global Security Kit (GSKit) versions 8.5 and 9.0

Description The issue allows remote attackers to cause a denial of service via a crafted handshake during resumption of an SSLv2 session. This occurs when a specially formed handshake is used to resume an SSLv2 session.

Recommendations For versions 8.5 and 9.0, consider disabling SSLv2 support as a temporary workaround until a patch is available. Restrict access to the SSLv2 handshake functionality to minimize the risk of exploitation.