This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.
The remote host has software installed that is affected by a spoofing
The remote host has a version of IBM Rational ClearQuest 7.1.x prior
to 126.96.36.199 / 8.0.0.x prior to 188.8.131.52 installed. It is, therefore,
affected by a spoofing vulnerability related to the included Global
Security Kit (GSKit) and certificate objects.
The GSKit does not enforce file integrity of the PKCS #12 files it
uses and is vulnerable to SSL server spoofing because the insertion
of arbitrary CA certificates is possible.
Note that deployments not using LDAP are not affected and that PKCS
#12 is not the default format used by ClearQuest.
See also :
Upgrade to IBM Rational ClearQuest 184.108.40.206 / 220.127.116.11 or later.
Risk factor :
Medium / CVSS Base Score : 5.8
CVSS Temporal Score : 5.0
Public Exploit Available : false