CVE-2014-0963

Currently unrated

Key Information:

Vendor: IBM
Status: Security Access Manager For Web Appliance; Security Access Manager For Web Software
Vendor: CVE Published:; 8 May 2014

Summary

The Reverse Proxy feature in IBM Global Security Kit (aka GSKit) in IBM Security Access Manager (ISAM) for Web 7.0 before 7.0.0-ISS-SAM-IF0006 and 8.0 before 8.0.0.3-ISS-WGA-IF0002 allows remote attackers to cause a denial of service (infinite loop) via crafted SSL messages.

References

http://secunia.com/advisories/59249

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/92844

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21676092

x_refsource_CONFIRM

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 8, 2014
Vulnerability Reserved
Jan 6, 2014