CVE-2012-0726

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Directory Server
Vendor: CVE Published:; 22 April 2012

Summary

The default configuration of TLS in IBM Tivoli Directory Server (TDS) 6.3 and earlier supports the (1) NULL-MD5 and (2) NULL-SHA ciphers, which allows remote attackers to trigger unencrypted communication via the TLS Handshake Protocol.

References

http://www.ibm.com/support/docview.wss?uid=swg1IO15761

vendor-advisoryx_refsource_AIXAPAR

https://exchange.xforce.ibmcloud.com/vulnerabilities/74303

vdb-entryx_refsource_XF

http://www.securitytracker.com/id?1026939

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Apr 22, 2012
Vulnerability Reserved
Jan 17, 2012