Miembros de
Boletines de Vulnerabilidades |
Security Bulletin: IBM System x and Flex Systems Browser Exploit Against SSL/TLS (BEAST) Mitigations (CVE-2011-3389) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
The SSL 3.0 and TLS 1.0 protocols when used with Cipher Block Chaining (CBC) mode with chained initialization vectors may allow man-in-the-middle attackers to obtain plaintext HTTP headers. CVE(s): CVE-2011-3389 Affected product(s) and affected version(s): Flex System Chassis Management Module, Option part number 68Y7029 Flex System Enterprise Chassis, type 7893, any model Flex System Enterprise Chassis, type 8721, any model Flex System Enterprise Chassis, type 8724, any model Flex More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_ibm_system_x_and_flex_systems_browser_exploit_against_ssl_tls_beast_mitigations_cve_2011_3389?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2011-3389 ,CVE-2013-4030 ,CVE-2013-0464 ,CVE-2013-0599 and CVE-2013-0169. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2013-09-14 |