Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Vulnerability in SSLv3 affects SmartCloud Cost Management / Tivoli Usage and Accounting Manager (CVE-2014-3566) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption (POODLE) attack. SSLv3 is enabled in SmartCloud Cost Management / Tivoli Usage and Accounting Manager CVE(s): CVE-2014-3566 Affected product(s) and affected version(s): SmartCloud Cost Management 2.1 SmartCloud Cost Management 2.1.0.1 SmartCloud Cost Management 2.1.0.2 Tivoli Usage and Accounting Manager 7.3 including all related fix packs Refer to the following reference URLs More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_vulnerability_in_sslv3_affects_smartcloud_cost_management_tivoli_usage_and_accounting_manager_cve_2014_3566?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-3566 and CVE-2012-5784. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-12-19 |