HP SiteScope And HP Service Manager SSL/TLS RC4 Algorithm Information Disclosure Vulnerability
Schweregrad:: Kritisch
Hinweisdatum: 21 Juli 2015
Beschreibung
The RC4 algorithm, as used in the TLS protocol and SSL protocol in HP SiteScope and HP Service Manager, has many single-byte biases, which makes it easier for remote attackers to conduct plaintext-recovery attacks via statistical analysis of ciphertext in a large number of sessions that use the same plaintext.
Trend Micro Lösungen
Apply associated Trend Micro DPI Rules.
Lösungen
Trend Micro Deep Security DPI Rule Number: 1005641
Trend Micro Deep Security DPI Rule Name: 1005641 - Identified TLS/SSL RC4 Cipher Suite Is Being Supported
Betroffene Software und Version:
- HP Service Manager
- HP SiteScope