CVE-2014-0848

Currently unrated

Key Information:

Vendor: IBM
Status: Netezza Performance Portal
Vendor: CVE Published:; 26 March 2014

Summary

The (1) ssl.conf and (2) httpd.conf files in the Apache HTTP Server component in IBM Netezza Performance Portal 2.0 before 2.0.0.4 have weak SSLCipherSuite values, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/90723

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21665278

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 26, 2014
Vulnerability Reserved
Jan 6, 2014