IBM Security Bulletin: IBM Security Access Manager for Web is affected by NTP vulnerabilities (CVE-2015-5300, CVE-2015-7704, CVE-2015-8138)

The Network Time Protocol (NTP) is used to synchronize a computer’s time with a

CVE(s): CVE-2015-5300, CVE-2015-7704, CVE-2015-8138

Affected product(s) and affected version(s):

IBM Security Access Manager for Web 7.0 (appliance), all firmware versions

IBM Security Access Manager for Web 8.0, all firmware versions

IBM Security Access Manager 9.0, all firmware versions

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1UaB8ys
X-Force Database: http://ift.tt/1rd28WE
X-Force Database: http://ift.tt/1W1Vu2C
X-Force Database: http://ift.tt/1rd26hG

from IBM Product Security Incident Response Team http://ift.tt/1Y0TSGi