Lucene search
RootSSV:60997HistorySep 13, 2013 - 12:00 a.m.
IBM Security AppScan Enterprise 弱密码安全绕过漏洞(CVE-2013-0531)
2013-09-1300:00:00
Root
www.seebug.org
35
EPSS
0.067
Percentile
93.9%
BUGTRAQ ID: 62179
CVE(CAN) ID: CVE-2013-0531
IBM Securityl AppScan Enterprise 是一个基于Web 的多用户Web 应用程序安全解决方案,提供集中的安全性扫描、数据合并和报告、补救功能、执行仪表板等功能
IBM Security AppScan Enterprise (即之前的IBM Rational AppScan Enterprise) 支持使用弱加密算法的SSL套件,攻击者无需本地网络访问及身份验证,即可利用此漏洞解密客户端和服务器之间的通讯,或在客户端上执行中间人攻击,从而获取敏感信息,执行未授权操作
0
IBM Rational AppScan Enterprise 5.6-8.7
厂商补丁:
IBM
IBM已经为此发布了一个安全公告(1640352)以及相应补丁:
1640352:Multiple vulnerabilities in IBM Security AppScan Enterprise (CVE-2013-0531, CVE-2013-0440, CVE-2013-2997)
链接:http://www-01.ibm.com/support/docview.wss?uid=swg21640352
Related
cve
cve
prion
prion
Design/Logic Flaw
2013-02-02 00:55:00
Information disclosure
2013-09-08 16:55:00
Design/Logic Flaw
2013-09-08 16:55:00
nvd
nvd
cvelist
cvelist
kaspersky
kaspersky
KLA10208 OSI vulnerability in IBM Security AppScan
2013-09-08 00:00:00
ubuntucve
ubuntucve
CVE-2013-0440
2013-02-01 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:52:32
ibm
ibm
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2013-155)
2015-09-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0440-3)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0440-2)
2021-06-09 00:00:00
nessus
nessus
Amazon Linux AMI : java-1.6.0-openjdk (ALAS-2013-155)
2013-09-04 00:00:00
IBM WebSphere Application Server 8.0 < Fix Pack 6 Multiple Vulnerabilities
2013-05-10 00:00:00
SuSE 11.2 Security Update : Java (SAT Patch Number 7450)
2013-03-14 00:00:00
amazon
amazon
Important: java-1.6.0-openjdk
2013-02-17 15:35:00
Important: java-1.7.0-openjdk
2013-02-17 15:35:00
suse
suse
Security update for Java (important)
2013-03-14 23:04:46
Security update for IBM Java2 JRE and SDK (important)
2013-03-18 22:04:28
Security update for Java (important)
2013-03-13 18:04:30
fedora
fedora
[SECURITY] Fedora 18 Update: java-1.7.0-openjdk-1.7.0.9-2.3.5.3.fc18
2013-02-09 11:29:39
[SECURITY] Fedora 17 Update: java-1.7.0-openjdk-1.7.0.9-2.3.5.3.fc17
2013-02-09 11:30:33
[SECURITY] Fedora 16 Update: java-1.6.0-openjdk-1.6.0.0-71.1.11.6.fc16
2013-02-09 11:28:38
oraclelinux
oraclelinux
java-1.6.0-openjdk security update
2013-02-08 00:00:00
java-1.6.0-openjdk security update
2013-02-08 00:00:00
java-1.7.0-openjdk security update
2013-02-08 00:00:00
redhat
redhat
(RHSA-2013:0245) Critical: java-1.6.0-openjdk security update
2013-02-08 00:00:00
(RHSA-2013:0246) Important: java-1.6.0-openjdk security update
2013-02-08 00:00:00
(RHSA-2013:0247) Important: java-1.7.0-openjdk security update
2013-02-08 00:00:00
centos
centos
java security update
2013-02-08 22:39:51
java security update
2013-02-09 11:03:54
java security update
2013-02-09 00:57:50
ubuntu
ubuntu
OpenJDK vulnerabilities
2013-02-14 00:00:00
cert
cert
Oracle Java contains multiple vulnerabilities
2013-02-01 00:00:00
securityvulns
securityvulns
Oracle Java multiple security vulnerabilities
2013-03-19 00:00:00
gentoo
gentoo
IcedTea JDK: Multiple vulnerabilities
2014-06-29 00:00:00
osv
osv
java-1_7_0-openjdk-1.7.0.121-1.1 on GA media
2024-06-15 00:00:00