OpenSSH is vulnerable to a denial of service vulnerability which affects IBM Spectrum Protect Plus.
CVEID: CVE-2017-15906 DESCRIPTION: OpenSSH is vulnerable to a denial of service, caused by an error in the process_open() function when in read-only mode. A remote authenticated attacker could exploit this vulnerability to create zero-length files and cause a denial of service.
CVSS Base Score: 6.5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/133128> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
IBM Spectrum Protect Plus 10.1.0 and 10.1.1.
IBM Spectrum Protect Plus Release
| First Fixing
VRM Level|Platform|Link to Fix / Fix Availability Target
—|—|—|—
10.1 | 10.1.2 | Linux |
<http://www.ibm.com/support/docview.wss?uid=swg24044949>
.
None.
CPE | Name | Operator | Version |
---|---|---|---|
ibm spectrum protect plus | eq | 10.1.0 | |
ibm spectrum protect plus | eq | 10.1.1 |