IBM WebSphere MQ 7.1 / 7.5 Multiple Vulnerabilities

This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has a service installed that is affected by
multiple vulnerabilities.

Description :

The version of IBM WebSphere MQ server is version 7.1 without Fix
Pack 7.1.0.2 or 7.5 without Fix Pack 7.5.0.1. It is, therefore,
affected by the following vulnerabilities :

- A flaw exists in Global Security Kit (GSkit) due to a
failure to properly validate data when the 'protection
mechanism' is executed against an SSL CBC timing attack.
A remote attacker, using crafted values in the TLS Record
Layer, can exploit this to cause a denial of service.
(CVE-2012-2191)

- A flaw exists in Global Security Kit (GSkit) due to a
failure to properly verify certificates, which can allow
a remote attacker to conduct a man-in-the-middle attack.
(CVE-2012-2203)

- An application can potentially put a sequence of large
messages into the queue, causing a buffer to overflow in
the queue manager. This can lead to a denial of service.
(CVE-2012-4863)

See also :

https://www-304.ibm.com/support/docview.wss?uid=swg21614483
http://www-01.ibm.com/support/docview.wss?uid=swg21617837
http://www.nessus.org/u?be2ba65d

Solution :

Apply fix pack 7.1.0.2 or later.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 5.5
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 63099 ()

Bugtraq ID: 54743
56471

CVE ID: CVE-2012-2191
CVE-2012-2203
CVE-2012-4863

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now