2 matches found
Security Bulletin: Non-configured connections could cause denial of service in IBM WebSphere MQ Internet Pass-Thru (CVE-2017-1118 )
Summary When using the MQIPT SecurityManager, IP addresses that are not configured in the MQIPT security policy file with the accept and resolve socket permissions, cause MQIPT to stop responding to connection attempts. Vulnerability Details CVEID: CVE-2017-1118 DESCRIPTION: IBM WebSphere MQ...
CVE-2017-1118
IBM WebSphere MQ Internet Pass-Thru (MQIPT) versions 2.0 and 2.1 are affected by CVE-2017-1118 due to an incorrectly configured security policy that can cause MQIPT to stop responding. The IBM bulletin notes that this denial-of-service condition arises when IP addresses not configured in the MQIP...