Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Vulnerability in SSLv3 affects InfoSphere Warehouse Edition, DB2 Warehouse Edition, DB2 Warehouse Intelligent Mining, and DB2 Warehouse Tooling Product Line (CVE-2014-3566) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption (POODLE) attack. SSLv3 is enabled in InfoSphere Warehouse Edition, DB2 Warehouse Edition, DB2 Warehouse Intelligent Mining, and DB2 Warehouse Tooling Product Line CVE(s): CVE-2014-3566 Affected product(s) and affected version(s): Product Version WebSphere Version Note InfoSphere Warehouse Edition v9.7 WebSphere v6.x WebSphere includes HTTP Server InfoSphere Warehouse More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_vulnerability_in_sslv3_affects_infosphere_warehouse_edition_db2_warehouse_edition_db2_warehouse_intelligent_mining_and_db2_warehouse_tooling_product_line_cve_2014_3566?lang=e |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-3566 ,CVE-2014-6151 ,CVE-2014-6152 ,CVE-2013-6429 ,CVE-2013-6430 ,CVE-2013-4444 ,CVE-2013-4286 ,CVE-2014-0033 ,CVE-2013-4322 ,CVE-2013-4590 ,CVE-2014-6271 and CVE-2014-7169. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-10-24 |