Back to search
CVE-2015-1892
Published: Apr 1, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
The Multicast DNS (mDNS) responder in IBM Security Access Manager for Web 7.x before 7.0.0 FP12 and 8.x before 8.0.1 FP1 inadvertently responds to unicast queries with source addresses that are not link-local, which allows remote attackers to cause a denial of service (traffic amplification) or obtain potentially sensitive information via port-5353 UDP packets.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
73683
vdb-entry
x_refsource_BID
VU#550620
third-party-advisory
x_refsource_CERT-VN
IV70911
vendor-advisory
x_refsource_AIXAPAR
IV70913
vendor-advisory
x_refsource_AIXAPAR
http://www-01.ibm.com/support/docview.wss?uid=swg21699497
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now