Denial of Service Vulnerability in IBM Security Access Manager
CVE-2014-0963

Currently unrated

Key Information:

Vendor: IBM
Status: Security Access Manager For Web Appliance; Security Access Manager For Web Software
Vendor: CVE Published:; 8 May 2014

What is CVE-2014-0963?

The Reverse Proxy feature within IBM Global Security Kit allows remote attackers to exploit crafted SSL messages, leading to a denial of service by creating an infinite loop. This vulnerability affects versions of IBM Security Access Manager prior to specified updates, posing a significant risk to systems utilizing this product. It is essential for organizations to apply the necessary patches to mitigate this threat and ensure the security and availability of their services.

References

http://secunia.com/advisories/59249

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/92844

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21676092

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 8, 2014
Vulnerability Reserved
Jan 6, 2014