3 matches found
Security Bulletin: mDNS vulnerability affects IBM Security Access Manager for Web (CVE-2015-1892)
Summary A vulnerability in mDNS affects IBM Security Access Manager for Web. Vulnerability Details CVEID: CVE-2015-1892 DESCRIPTION: IBM Security Access Manager for Web could allow a remote attacker to send specially crafted UDP packets to extract information from the mDNS service. CVSS Base Scor...
CVE-2015-1892
The Multicast DNS mDNS responder in IBM Security Access Manager for Web 7.x before 7.0.0 FP12 and 8.x before 8.0.1 FP1 inadvertently responds to unicast queries with source addresses that are not link-local, which allows remote attackers to cause a denial of service traffic amplification or obtai...
CVE-2015-1892
IBM Security Access Manager for Web (ISAM for Web) 7.x before 7.0.0 FP12 and 8.x before 8.0.1 FP1 is affected by CVE-2015-1892, a vulnerability in the mDNS responder that may reply to unicast queries from outside the local link. This can lead to information disclosure or a DoS via traffic amplifi...