Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Security Bulletin: Vulnerability in SSLv3 affects IBM Intelligent Operations Center and related products, and Integrated Information Core (CVE-2014-3566) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption (POODLE) attack. SSLv3 is enabled in IBM HTTP Server and IBM WebSphere Application Server, used by the IBM products listed below. CVE(s): CVE-2014-3566 Affected product(s) and affected version(s): This vulnerability affects all versions and releases of the IBM HTTP Server component in all editions of WebSphere Application Server and bundling products; and all versions and releases More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_security_bulletin_vulnerability_in_sslv3_affects_ibm_intelligent_operations_center_and_related_products_and_integrated_information_core_cve_2014_3566?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-3566 ,CVE-2014-6151 ,CVE-2014-6152 ,CVE-2013-6429 and CVE-2013-6430. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-10-24 |