Vulnerability Details CVE-2013-6329
IBM Global Security Kit (aka GSKit), as used in Content Manager OnDemand 8.5 and 9.0 and other products, allows remote attackers to cause a denial of service via a crafted handshake during resumption of an SSLv2 session.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.023
EPSS Ranking 83.7%
CVSS Severity
CVSS v2 Score 7.8
References
- http://secunia.com/advisories/56058
- http://www-01.ibm.com/support/docview.wss?uid=swg21659548
- http://www-01.ibm.com/support/docview.wss?uid=swg21659716
- http://www-01.ibm.com/support/docview.wss?uid=swg21659837
- http://www-01.ibm.com/support/docview.wss?uid=swg21669554
- http://www-01.ibm.com/support/docview.wss?uid=swg21676091
- http://www-01.ibm.com/support/docview.wss?uid=swg21676092
- https://exchange.xforce.ibmcloud.com/vulnerabilities/88939
- http://secunia.com/advisories/56058
- http://www-01.ibm.com/support/docview.wss?uid=swg21659548
- http://www-01.ibm.com/support/docview.wss?uid=swg21659716
- http://www-01.ibm.com/support/docview.wss?uid=swg21659837
- http://www-01.ibm.com/support/docview.wss?uid=swg21669554
- http://www-01.ibm.com/support/docview.wss?uid=swg21676091
- http://www-01.ibm.com/support/docview.wss?uid=swg21676092
- https://exchange.xforce.ibmcloud.com/vulnerabilities/88939
Products affected by CVE-2013-6329
-
cpe:2.3:a:ibm:content_manager_ondemand_for_multiplatforms:8.5
-
cpe:2.3:a:ibm:content_manager_ondemand_for_multiplatforms:9.0
-
cpe:2.3:a:ibm:global_security_kit:-
-
cpe:2.3:a:ibm:security_access_manager_for_web:6.0
-
cpe:2.3:a:ibm:security_access_manager_for_web:6.1
-
cpe:2.3:a:ibm:security_access_manager_for_web:6.1.1
-
cpe:2.3:a:ibm:security_access_manager_for_web:7.0