Client initiated Renegotiation could lead to weak encrypted communication, therefore client initiated renegotiation should be disabled.
CVEID:CVE-2011-1473
**DESCRIPTION:**Multiple implementations of the Transport Layer Security (TLS) protocol, including SSL, are vulnerable to a denial of service. By initiating multiple SSL renegotiation handshakes or by initiating many SSL connections, a remote attacker could exploit this vulnerability to utilize CPU resources.
CVSS Base score: 5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/71068 for the current score.
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Affected Product(s) | Version(s) |
---|---|
SPSS Statistics Server | 27.0 |
Affected Product(s) | Version(s) | Fix |
---|---|---|
SPSS Statistics Server | 27.0 | Upgrade to Ver 27.0.1 |
To download IBM SPSS Statistics 27.0.1, sign into IBM Passport Advantage Online (PAO) website. Note, you must be an authorized user from your company to sign in.
Enter “SPSS Statistics Server 27.0.1” text string for search by Product name.
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm spss statistics | eq | 27.0 |