5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
The RC4 “Bar Mitzvah” Attack for SSL/TLS affects Tivoli Netcool/OMNIbus
CVEID: CVE-2015-2808 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information. An attacker could exploit this vulnerability to remotely expose account credentials without requiring an active man-in-the-middle session. Successful exploitation could allow an attacker to obtain sensitive information. This vulnerability is commonly referred to as “Bar Mitzvah Attack”.
CVSS Base Score: 5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/101851 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Tivoli Netcool/OMNIbus 7.3.0
Tivoli Netcool/OMNIbus 7.3.1
Tivoli Netcool/OMNIbus 7.4.0
Tivoli Netcool/OMNIbus 8.1.0
Product
| VRMF| APAR| Remediation/First Fix
—|—|—|—
OMNIbus | 7.3.0.16| IIV73107, IV73123, IV74026| <http://www-01.ibm.com/support/docview.wss?uid=swg24039351>
OMNIbus| 7.3.1.13| IV73107, IV73123, IV74026| <http://www-01.ibm.com/support/docview.wss?uid=swg24039350>
OMNIbus| 7.4.0.7| IV73107, IV73123, IV74026| <http://www-01.ibm.com/support/docview.wss?uid=swg24039348>
OMNIbus | 8.1.0.4| IV73107, IV73123, IV74026| <http://www-01.ibm.com/support/docview.wss?uid=swg24039347>
Configure the OMNIbus server components to use FIPS mode as that will disable RC4 by default. FIPS mode configuration is described here: <http://www-01.ibm.com/support/knowledgecenter/SSSHTQ_8.1.0/com.ibm.netcool_OMNIbus.doc_8.1.0/omnibus/wip/install/concept/omn_con_fips_configuringsupport.html?lang=en>
CPE | Name | Operator | Version |
---|---|---|---|
tivoli netcool/omnibus | eq | 7.4.0 | |
tivoli netcool/omnibus | eq | 7.3.1 | |
tivoli netcool/omnibus | eq | 7.3.0 | |
tivoli netcool/omnibus | eq | 8.1.0 |