فا

‫ IBM Security Network Protection Multiple Vulnerabilities

ID:IRCAD2015023740
Release Date: 2015-02-05
Criticality level: Highly critical
Software:
IBM Security Network Protection
Description:
IBM has acknowledged multiple vulnerabilities in IBM Security Network Protection, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to conduct brute force and cross-site scripting attacks, disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
1) The application bundles a vulnerable version of GNU C Library.
2) The application bundles a vulnerable version of OpenSSL.
3) The application bundles a vulnerable version of Java.
4) The application bundles a vulnerable version of Dojo Toolkit.
The vulnerabilities #1 through #4 are reported in versions 5.2 and 5.3.
5) The application bundles a vulnerable version of ntpd.
This vulnerability is reported in version 5.3.
Solution:
Apply fix.
References:
IBM:
Secunia:

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

مشخصات خبر

 
تاریخ ایجاد: 27 بهمن 1393

امتیاز

امتیاز شما
تعداد امتیازها: 0