Detections
Analytics

IBM Tivoli Directory Server TLS NULL Cipher (uncredentialed check)

medium Nessus Plugin ID 62574

Language:

Synopsis

The remote IBM Tivoli Directory Server contains an information disclosure vulnerability.

Description

The IBM Tivoli Directory Server hosted on the remote host supports TLS NULL-MD5 or NULL_SHA ciphers. This allows remote, unauthenticated attackers to trigger unencrypted communication via the TLS handshake protocol.

Note that this version of Directory Server likely has other vulnerabilities (i.e., CVE-2012-0743), but Nessus has not checked for those issues.

Solution

Install the appropriate fix based on the vendor's advisory :

 - 6.1.0.47-ISS-ITDS-IF0047
 - 6.2.0.22-ISS-ITDS-IF0022
 - 6.3.0.11-ISS-ITDS-IF0011

See Also

http://www-01.ibm.com/support/docview.wss?uid=swg21591272

Plugin Details

Severity: Medium

ID: 62574

File Name: tivoli_directory_srv_null_cipher.nasl

Version: 1.9

Type: remote

Family: General

Published: 10/17/2012

Updated: 6/12/2020

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 2.5

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 4.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

Vulnerability Information

CPE: cpe:/a:ibm:tivoli_directory_server

Required KB Items: SSL/Supported

Exploit Ease: No known exploits are available

Patch Publication Date: 4/16/2012

Vulnerability Publication Date: 4/16/2012

Reference Information

CVE: CVE-2012-0726

BID: 53043