CVE-2012-2191 in Global Security Kitinfo

Zusammenfassung (Englisch)

IBM Global Security Kit (aka GSKit) before 8.0.14.22, as used in IBM Rational Directory Server, IBM Tivoli Directory Server, and other products, does not properly validate data during execution of a protection mechanism against the Vaudenay SSL CBC timing attack, which allows remote attackers to cause a denial of service (application crash) via crafted values in the TLS Record Layer, a different vulnerability than CVE-2012-2333.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

04.04.2012

Veröffentlichung

08.08.2012

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
61518	IBM Global Security Kit erweiterte Rechte	20	Nicht definiert	Offizieller Fix	CVE-2012-2191

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

◂ ZurückÜbersichtWeiter ▸

Do you know our Splunk app?

Download it now for free!