Home Unlabelled IBM Security Bulletin: IBM Cisco SAN switches and directors are vulnerable to OpenSSL denial of service (CVE-2016-2180).

IBM Security Bulletin: IBM Cisco SAN switches and directors are vulnerable to OpenSSL denial of service (CVE-2016-2180).

By
Friday, June 09, 2017
Read
Add Comment

IBM Cisco SAN switches and directors OpenSSL is vulnerable to a denial of service, caused by an out-of-bounds read in the TS_OBJ_print_bio function. A remote attacker could exploit this vulnerability using a specially crafted time-stamp file to cause the application to crash.

CVE(s): CVE-2016-2180

Affected product(s) and affected version(s):

NX-OS firmware 7.X and versions prior to 5.2.8i, 6.2.19, 8.1.

DCNM software prior to 10.2.1.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2rdDipH
X-Force Database: http://ift.tt/2dmWOvf

The post IBM Security Bulletin: IBM Cisco SAN switches and directors are vulnerable to OpenSSL denial of service (CVE-2016-2180). appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2rdDjKh
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us