IBM WebSphere MQ 7.0 / 7.1 / 7.5 Global Security Toolkit Vulnerabilities

This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has a service installed that has multiple
vulnerabilities within the IBM Global Security Toolkit.

Description :

The version of IBM WebSphere MQ server is version 7.0 without Fix
Pack 7.0.1.9, 7.1 without Fix Pack 7.1.0.2 or 7.5 without Fix Pack
7.5.0.1. It is, therefore, affected by the following vulnerabilities :

- A flaw exists in Global Security Kit (GSkit) due to a
failure to properly validate data when the 'protection
mechanism' is executed against an SSL CBC timing attack.
A remote attacker, using crafted values in the TLS Record
Layer, can exploit this to cause a denial of service.
(CVE-2012-2191)

- A flaw exists in Global Security Kit (GSkit) due to a
failure to properly verify certificates, which can allow
a remote attacker to conduct a man-in-the-middle attack.
(CVE-2012-2203)

See also :

https://www-304.ibm.com/support/docview.wss?uid=swg21614483
http://www.nessus.org/u?be2ba65d

Solution :

Apply fix pack 7.0.1.9 or later.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 5.5
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 63098 ()

Bugtraq ID: 54743

CVE ID: CVE-2012-2191
CVE-2012-2203

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now