- Home
- CVEs with nessus.description==The version of IBM WebSphere MQ server is version 7.1 without Fix
Pack 7.1.0.2 or 7.5 without Fix Pack 7.5.0.1. It is, therefore,
affected by the following vulnerabilities :
- A flaw exists in Global Security Kit (GSkit) due to a
failure to properly validate data when the 'protection
mechanism' is executed against an SSL CBC timing attack.
A remote attacker, using crafted values in the TLS Record
Layer, can exploit this to cause a denial of service.
(CVE-2012-2191)
- A flaw exists in Global Security Kit (GSkit) due to a
failure to properly verify certificates, which can allow
a remote attacker to conduct a man-in-the-middle attack.
(CVE-2012-2203)
- An application can potentially put a sequence of large
messages into the queue, causing a buffer to overflow in
the queue manager. This can lead to a denial of service.
(CVE-2012-4863)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top