Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: TLS padding vulnerability affects IBM PureApplication System (CVE-2014-8730) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
Transport Layer Security (TLS) padding vulnerability via a POODLE (Padding Oracle On Downgraded Legacy Encryption) like attack affects IBM PureApplication System. CVE(s): CVE-2014-8730 Affected product(s) and affected version(s): This vulnerability affects all versions and releases of IBM HTTP Server (powered by Apache) component in all editions of WebSphere Application Server and bundling products. IBM PureApplication Server bundles WebSphere Application Server in its Web Application More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_tls_padding_vulnerability_affects_ibm_pureapplication_system_cve_2014_8730?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-8730 ,CVE-2015-4000 and CVE-2015-0196. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-06-24 |