Описание
IBM Global Security Kit (aka GSKit), as used in Content Manager OnDemand 8.5 and 9.0 and other products, allows remote attackers to cause a denial of service via a crafted handshake during resumption of an SSLv2 session.
Ссылки
- Vendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:content_manager_ondemand_for_multiplatforms:8.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:content_manager_ondemand_for_multiplatforms:9.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:global_security_kit:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:security_access_manager_for_web:6.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:security_access_manager_for_web:6.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:security_access_manager_for_web:6.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:security_access_manager_for_web:7.0:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02259
Низкий
7.8 High
CVSS2
Дефекты
CWE-310
Связанные уязвимости
github
около 3 лет назад
IBM Global Security Kit (aka GSKit), as used in Content Manager OnDemand 8.5 and 9.0 and other products, allows remote attackers to cause a denial of service via a crafted handshake during resumption of an SSLv2 session.
fstec
больше 11 лет назад
Уязвимость программного обеспечения WebSphere Application Server, позволяющая удаленному злоумышленнику нарушить доступность защищаемой информации
EPSS
Процентиль: 84%
0.02259
Низкий
7.8 High
CVSS2
Дефекты
CWE-310