Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMECCE014D73B98FA8DFDAF62FBE6CB38DC60F865162B6796DE08DE157BB863D0D
HistoryJun 16, 2018 - 9:23 p.m.

Security Bulletin: A GSKit vulnerability affects IBM Security SiteProtector System (CVE-2015-0138)

2018-06-1621:23:18
www.ibm.com
6

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

JSON

Summary

GSKit is an IBM component that is used by IBM Security SiteProtector System. The GSKit that is shipped with SiteProtector contains a security vulnerability known as “FREAK: Factoring Attack on RSA-EXPORT keys", a TLS/SSL client and server vulnerability. IBM Security SiteProtector System has addressed the applicable CVE.

Vulnerability Details

CVEID: CVE-2015-0138

DESCRIPTION: A vulnerability in various IBM SSL/TLS implementations could allow a remote attacker to downgrade the security of certain SSL/TLS connections. An IBM SSL/TLS client implementation could accept the use of an RSA temporary key in a non-export RSA key exchange ciphersuite. This could allow a remote attacker using man-in-the-middle techniques to facilitate brute-force decryption of TLS/SSL traffic between vulnerable clients and servers.

This vulnerability is also known as the FREAK attack.

CVSS Base Score: 4.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/#/vulnerabilities/100691 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:P/A:N)

Affected Products and Versions

IBM Security SiteProtector System 3.0, 3.1.0 and 3.1.1

Remediation/Fixes

You should verify applying this fix does not cause any compatibility issues.

Apply the appropriate eXPress Updates (XPUs) as identified in the SiteProtector Console Agent view:

For SiteProtector 3.0:
SiteProtector Core Component: ServicePack3_0_0_7.xpu
Event Collector Component: RSEvntCol_WINNT_ST_3_0_0_6.xpu
Agent Manager Component: AgentManager_WINNT_XXX_ST_3_0_0_37.xpu

For SiteProtector 3.1.0:
SiteProtector Core Component: ServicePack3_1_0_4.xpu
Event Collector Component: RSEvntCol_WINNT_ST_3_1_0_4.xpu
Agent Manager Component: AgentManager_WINNT_XXX_ST_3_0_0_19.xpu

For SiteProtector 3.1.1:
SiteProtector Core Component: ServicePack3_1_1_2.xpu
Event Collector Component: RSEvntCol_WINNT_ST_3_1_1_2.xpu
Agent Manager Component: AgentManager_WINNT_XXX_ST_3_0_0_7.xpu
Update Server Component: UpdateServer_3_1_1_2.pkg
Event Archiver Component: EventArchiver_3_1_1­_2.pkg
Event Archiver Importer Component: EventArchiverImporter_3_1_1_2.zip
Manual Upgrader Component: MU_3_1_1_3.xpu

Workarounds and Mitigations

None

Related

ibm 141
aix 2
prion 1
cve 1
nessus 24
suse 8
openvas 12
kaspersky 1
redhat 5
veracode 4
ibm
ibm
Security Bulletin: Vulnerability in IBM WebSphere Application Server affects Tivoli Netcool Impact (CVE-2015-0138)
2018-06-17 14:59:23
Security Bulletin: Vulnerability in IBM Java Runtime affects IBM FileNet Content Manager and IBM Content Foundation (CVE-2015-0138)
2018-06-17 12:10:30
Security Bulletin: Current release of IBM® WebSphere Real Time is affected by CVE-2015-0138
2018-06-15 07:02:42
aix
aix
AIX IBM SDK Java JSSE vulnerability
2015-04-13 12:11:24
Multiple vulnerabilities in IBM Java SDK affect AIX
2015-06-03 12:58:42
prion
prion
Design/Logic Flaw
2015-03-25 01:59:00
cve
cve
CVE-2015-0138
2015-03-25 01:59:00
nessus
nessus
IBM HTTP Server 8.5.0.0 <= 8.5.5.5 / 8.0.0.0 <= 8.0.0.10 / 7.0.0.0 <= 7.0.0.37 / 6.1.0.0 <= 6.1.0.47 / 6.0.0.0 <= 6.0.2.43 (257477)
2020-12-15 00:00:00
AIX Java Advisory : Multiple Vulnerabilities (Bar Mitzvah)
2015-04-30 00:00:00
IBM DB2 10.5 < Fix Pack 6 Multiple Vulnerabilities (Bar Mitzvah)
2016-04-15 00:00:00
suse
suse
Security update for java-1_7_0-ibm (important)
2015-06-16 22:06:38
Security update for IBM Java (important)
2015-06-18 16:05:20
Security update for java-1_7_0-ibm (important)
2015-06-27 04:05:10
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:1073-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:1085-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:1161-1)
2021-06-09 00:00:00
kaspersky
kaspersky
KLA10503 Multiple vulnerabilities in IBM products
2015-03-24 00:00:00
redhat
redhat
(RHSA-2015:1021) Important: java-1.5.0-ibm security update
2015-05-20 00:00:00
(RHSA-2015:1020) Critical: java-1.7.1-ibm security update
2015-05-20 00:00:00
(RHSA-2015:1091) Low: Red Hat Satellite IBM Java Runtime security update
2015-06-11 00:00:00
veracode
veracode
Sandbox Restrictions Bypass
2019-05-02 05:39:14
Sandbox Restrictions Bypass
2019-05-02 05:39:14
Insecure TLS Configurations
2019-05-02 05:39:14

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

JSON
Related for ECCE014D73B98FA8DFDAF62FBE6CB38DC60F865162B6796DE08DE157BB863D0D
ibm141aix2prion1cve1nessus24suse8openvas12kaspersky1redhat5veracode4