Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Vulnerability in RC4 stream cipher affects IBM Notes, Domino & Expeditor (CVE-2015-2808) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
The RC4 “Bar Mitzvah” attack for SSL/TLS affects IBM Notes, Domino, and Expeditor. CVE(s): CVE-2015-2808 Affected product(s) and affected version(s): IBM Expeditor 6.2.3, 6.2.2, 6.2.1 IBM Notes 9.0.1, 9.0, 8.5.3, 8.5.2, 8.5.1 IBM Domino 9.0 , 8.5.3, 8.5.2, 8.5.1 NOTE: IBM Domino 9.0.1 supports TLS 1.2 and it is not vulnerable to the “Bar Mitzvah” attack. Refer to the following reference URLs for remediation and additional vulnerability details: Source More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_vulnerability_in_rc4_stream_cipher_affects_ibm_notes_domino_expeditor_cve_2015_2808?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2015-2808 ,CVE-2015-0138 ,CVE-2015-0410 ,CVE-2014-6593 ,CVE-2014-8917 ,CVE-2014-3567 ,CVE-2014-3566 and CVE-2015-4000. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-06-19 |