Informix Server GSKit 7.x <= 22.214.171.124 / 8.0.50.x <= 126.96.36.199 X.509 Certificate Chain DoS
High Nessus Plugin ID 80476
SynopsisThe remote host has an application that is affected by a denial of service vulnerability.
DescriptionThe remote Informix server ships with a version of IBM's Global Security kit (GSKit) library that is affected by a denial of service vulnerability. A remote attacker can exploit this issue via malformed X.509 certificate chain to cause the host to become unresponsive.
Note that this plugin only checks the version of IBM Informix Server and GSKit. It does not check for the presence of any workaround.
SolutionUpgrade the Informix server or apply the correct GSKit patch per the vendor advisory.