[R1] LCE 5.0.1 Fixes Two Third-party Library Vulnerabilities

2017-03-22T19:13:52
ID TENABLE:88AC8A7903CAE2C0831297907C90D570
Type tenable
Reporter Brian Martin
Modified 2017-03-22T19:13:52

Description

Log Correlation Engine (LCE) 5.0.0 is impacted by multiple vulnerabilities reported in a third-party library and an encryption algorithm. LCE was errantly using 3DES on TCP port 1243.

The following vulnerabilities have been resolved with the updated libraries.