OpenSSL ASN.1 Parsing Vulnerabilities in IBM HttpServer 6

Web Server Talk > Web Servers reviews > WebSphere > WebSphere HTTP Server > OpenSSL ASN.1 Parsing Vulnerabilities in IBM HttpServer 6

Last Thread Next Thread Next

OpenSSL ASN.1 Parsing Vulnerabilities in IBM HttpServer 6

01-09-06 01:04 PM

Hi there.

How do I patch our IBM HttpServer 6.0.2.3 so that this error is resolved? Ou
r security certification company will not give us a high rating until this h
as been resolved....

The latest (6.0.2.5) does not seem to include any fixes for the IBM Httpserv
er....

This is the details of the vulnerability:

OpenSSL ASN.1 Parsing Vulnerabilities

Bugtraq ID:  8732
Class:  Unknown
CVE:  CAN-2003-0543, CAN-2003-0544, CAN-2003-054, CAN-2005-1730

Thanks - Christian

[ Post a follow-up to this message ]

Re: OpenSSL ASN.1 Parsing Vulnerabilities in IBM HttpServer 6

Ben_

01-09-06 11:13 PM

"
IBM has released APARS to address these issues in IBM HTTP server. Customers
are advised to apply an appropriate APAR as soon as possible. Please see the
referenced advisory (MSS-OAR-E01-2004.0422.1), for further details regarding
obtaining and applying an appropriate APAR. APARS are linked below.
"
http://www.securityfocus.com/bid/8732/solution

[ Post a follow-up to this message ]

Most Popular forums

Apache Server	MySQL for Windows	Sendmail
Red Hat Networking	SuSe Linux	Debian Linux
FreeBSD administration	Sun Solaris administration	Unix Shell programming
WebSphere Portal Server	Exchange 2000 administration	PostgreSQL administration
Linux Security	Computer Security	Firewalls

Forum Jump:

Forum Rules:

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

HTML code is OFF
vB code is ON
Smilies are ON
[IMG] code is OFF

Medical and Health forum | Computer Games Reviews | Graphics design forum

Automated OffSite Backup	Shopping Cart Software
RAM Memory Upgrades

Syndicate this forum via XML or simple JavaScript feed

Home | Usercp | Faq | Register