Home Unlabelled Security Bulletin: SMB signing not required in IBM Spectrum Protect Plus (CVE-2016-2115)

Security Bulletin: SMB signing not required in IBM Spectrum Protect Plus (CVE-2016-2115)

By
Friday, November 22, 2019
Read
Add Comment

Nov 22, 2019 7:00 pm EST

Categorized: Medium Severity

Share this post:

IBM Spectrum Protect Plus is vulnerable to man-in-the-middle attacks as it does not make SMB signing mandatory.

Affected product(s) and affected version(s):

Affected Product(s)Version(s)
IBM Spectrum Protect Plus10.1.0-10.1.4

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1107195



from IBM Product Security Incident Response Team https://ift.tt/35qK9k7
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us