AIX bind Advisory : nettcp_advisory2.asc (IV86116) (IV86117) (IV86118) (IV86119) (IV86120) (IV86132)

The version of bind installed on the remote AIX host is affected by the following vulnerabilities : - The TLS protocol allows weaker than expected security caused by a collision attack when using the MD5 hash function for signing a ServerKeyExchange message during a TLS handshake. An attacker can...

Vulnerability in pConsole impacts AIX,pConsole on AIX does not support TLS 1.2.

IBM SECURITY ADVISORY First Issued: Fri Dec 2 15:01:37 CST 2016 |Updated: Mon May 1 16:30:43 CDT 2017 |Update: Bulletin updated to include ifix for AIX level 7.1.3 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/pconsoleadvisory2.asc...

CVE-2016-0266

IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x do not default to the latest TLS version, which makes it easier for man-in-the-middle attackers to obtain sensitive information via unspecified vectors...

CVE-2016-0266

IBM AIX and VIOS are affected by CVE-2016-0266, where AIX 5.3, 6.1, 7.1, 7.2 and VIOS 2.2.x do not default to the latest TLS version, enabling MITM exposure to obtain sensitive information via unspecified vectors. The issue is linked to pconsole and related TLS handling, with CVSS base context sh...