2 matches found
Security Bulletin: No validation on SSL certificates in IBM Tivoli Composite Application Manager for Transactions (CVE-2014-3051)
Summary IBM Tivoli Composite Application Manager for Transactions does not validate SSL certificates during normal operation. An attacker could perform man in middle attack techniques and obtain authentication credentials. Vulnerability Details CVE-ID: CVE-2014-3051 DESCRIPTION: IBM Tivoli...
CVE-2014-3051
IBM ITCAM for Transactions Internet Service Monitor (ISM) agent fails to validate SSL/X.509 certificates, enabling potential MITM attacks to capture credentials. Affected versions: ITCAM for Transactions 7.1/7.2 (up to 7.2.0.3 IF28), 7.3 (up to 7.3.0.1 IF30), and 7.4 (up to 7.4.0.0 IF18). Remedia...