PT-2014-3890 · Apache+1 · Apache Http Server+1

Published

2014-03-26

Updated

2017-08-29

CVE-2014-0848

CVSS v2.0

3.5

Low

Vector

AV:N/AC:M/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Netezza Performance Portal versions prior to 2.0.0.4

Description The issue concerns weak SSLCipherSuite values in the Apache HTTP Server component, making it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.

Recommendations For versions prior to 2.0.0.4, update to version 2.0.0.4 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-310

Related Identifiers

CVE-2014-0848

Affected Products

Apache Http Server

Ibm Netezza Performance Portal

PT-2014-3890 · Apache+1 · Apache Http Server+1

CVE-2014-0848

Weakness Enumeration

Related Identifiers

Affected Products

References · 3