CVE-2016-2927

Sažetak

IBM BigFix Remote Control before 9.1.3 does not properly restrict the set of available encryption algorithms, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and performing calculations on encrypted data.

Reference

http://www.securityfocus.com/bid/94561
http://www-01.ibm.com/support/docview.wss?uid=swg1IV89792
http://www-01.ibm.com/support/docview.wss?uid=swg21991875

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

30-11-2016 - 03:05

Objavljeno

25-11-2016 - 20:59