PT-2018-4387 · Ibm · Ibm Bigfix Remote Control
Published
2018-03-29
·
Updated
2018-04-24
·
CVE-2015-4953
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
IBM BigFix Remote Control versions prior to 9.1.2-TIV-IBRC912-IF0001
Description
The issue makes it easier for man-in-the-middle attackers to decrypt traffic by leveraging a weakness in the encryption protocol.
Recommendations
For versions prior to 9.1.2-TIV-IBRC912-IF0001, update to Interim Fix pack 9.1.2-TIV-IBRC912-IF0001 to resolve the issue.
Fix
Inadequate Encryption Strength
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Bigfix Remote Control