CVE-2012-5770

Severity

57%

Complexity

86%

Confidentiality

81%

The SSL configuration in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.x before 7.2.1.4 supports the MD5 hash algorithm, which makes it easier for man-in-the-middle attackers to spoof servers and decrypt network traffic via a brute-force attack.

The SSL configuration in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.x before 7.2.1.4 supports the MD5 hash algorithm, which makes it easier for man-in-the-middle attackers to spoof servers and decrypt network traffic via a brute-force attack.

CVSS 2.0 Base Score 5.8. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:P/A:N).

Overview

First reported 12 years ago

2013-03-06 13:10:00

Last updated 7 years ago

2017-08-29 01:32:00

Affected Software

IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.1

7.2.1

IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.1.3

7.2.1.3

References

IV32391

http://www-01.ibm.com/support/docview.wss?uid=swg21626029

Patch, Vendor Advisory

taddm-weak-ssl(80354)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.