Boletines de Vulnerabilidades

IBM Security Bulletin: The default configuration of the web server used by IBM Netezza Performance Portal uses weak SSL ciphers (CVE-2014-0848)

Información sobre el sistema
   
Software afectado IBM

Descripción
The default configuration of the Apache web server used by IBM Netezza Performance Portal uses weak SSL ciphers. CVE(s): CVE-2014-0848 Affected product(s) and affected version(s): IBM Netezza Performance Portal 2.0 Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg21665278 X-Force Database: http://xforce.iss.net/xforce/xfdb/90723

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_the_default_configuration_of_the_web_server_used_by_ibm_netezza_performance_portal_uses_weak_ssl_ciphers_cve_2014_0848?lang=en_us

Identificadores estándar
Propiedad Valor
CVE CVE-2014-0848 ,CVE-2013-4066 ,CVE-2013-4067 ,CVE-2013-5440 ,CVE-2014-0873 ,CVE-2013-4002 ,CVE-2013-5825 ,CVE-2013-5372 ,CVE-2014-0416 ,CVE-2014-0411 ,CVE-2013-4353 ,CVE-2013-6450 and CVE-2013-6449.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2014-03-14

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT