OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error in the in the Triple-DES on 64-bit block cipher, used as a part of the SSL/TLS protocol. This vulnerability is known as the SWEET32 Birthday attack. IBM Security Guardium has fixed this vulnerability
CVE(s): CVE-2016-2183
Affected product(s) and affected version(s):
IBM Security Guardium V8.2
IBM Security Guardium V 9, 9.1, 9.5
IBM Security Guardium V10, 10.0.1, 10.1, 10.1.2
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2h9XdEa
X-Force Database: http://ift.tt/2dR3VyC
from IBM Product Security Incident Response Team http://ift.tt/2h9SbaI
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.