Lucene search

PRIOn knowledge basePRION:CVE-2014-0963

HistoryMay 08, 2014 - 10:55 a.m.

Authentication flaw

2014-05-0810:55:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.059 Low

EPSS

Percentile

93.2%

JSON

The Reverse Proxy feature in IBM Global Security Kit (aka GSKit) in IBM Security Access Manager (ISAM) for Web 7.0 before 7.0.0-ISS-SAM-IF0006 and 8.0 before 8.0.0.3-ISS-WGA-IF0002 allows remote attackers to cause a denial of service (infinite loop) via crafted SSL messages.

CPENameOperatorVersion
security_access_manager_for_web_applianceeq7.0
security_access_manager_for_web_applianceeq8.0
security_access_manager_for_web_softwareeq8.0
security_access_manager_for_web_softwareeq7.0

Name	Operator	Version
security_access_manager_for_web_appliance	eq	7.0
security_access_manager_for_web_appliance	eq	8.0
security_access_manager_for_web_software	eq	8.0
security_access_manager_for_web_software	eq	7.0

References

secunia.com/advisories/58845

secunia.com/advisories/59245

secunia.com/advisories/59249

www-01.ibm.com/support/docview.wss?uid=swg1IV59660

www-01.ibm.com/support/docview.wss?uid=swg21672192

www-01.ibm.com/support/docview.wss?uid=swg21676091

www-01.ibm.com/support/docview.wss?uid=swg21676092

www-304.ibm.com/support/docview.wss?uid=swg21680803

www.ibm.com/support/docview.wss?uid=swg21675496

www.securityfocus.com/bid/67238

www.securitytracker.com/id/1030707

exchange.xforce.ibmcloud.com/vulnerabilities/92844

6.8 Medium

AI Score

Confidence

Low

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.059 Low

EPSS

Percentile

93.2%

JSON

Related for PRION:CVE-2014-0963