Home > Enterprise >  IBM Integration Bus V9 server support TLS Client - initiated heavy negotiation attack (CVE - 2011-14
IBM Integration Bus V9 server support TLS Client - initiated heavy negotiation attack (CVE - 2011-14

Time:09-15

The vulnerability exists in the process of SSL renegotiation, to use SSL heavy consultation function of the service will be affected, in particular, renegotiation is used in between the browser and server validation, although it can not enable the renegotiation process using HTTPS, but many of the server's default Settings are enabled the function of renegotiation, the vulnerability only need a common computer and DSL connection can easily penetrate the SSL server, and for large server cluster, you need 20 computer network connection can be realized and 120 KBPS, SSL is bank, Internet electronic mail services and other used to protect personal data between the user and server and secure communication indispensable function, so the denial of service vulnerability influence range is very wide harm is very big,
9.0.0.11 now, is there any way not to upgrade IIB, solve the bug, please everyone a great god help have a look

Page link:https//www.codepudding.com/Enterprise/787.html

Prev:Ask everybody to give directions!!!!!! Ask the difference between IP whois query and IP query!!!!!!
Next:Please download data from resources and environment data center, how to convert coordinates?
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding