× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. December 2023

RE: FLASH: Security Bulletin: IBM i Access Client Solutions





I checked the IBM CVE page on my blog .... https://ibmireference.blogspot.com/p/virus-common-vulnerabilty-exposure-cve.html
Didn't see much either.


Very Respectfully,
Michael Mayer
IBM i on Power System Admin.
ERMCO-ECI, Dyersburg, Tn
Cell: 731.676.4318
Cell: 518.641.8906
IBM i Reference blog page: http://ibmireference.blogspot.com/


1. RE: FLASH: Security Bulletin: IBM i Access Client Solutions
is vulnerable to remote code execution and failing to secure
passwords due to multiple vulnerabilities (2023.12.08)
(ChadB@xxxxxxxxxxxxxxxxxxxxxxxx)

----------------------------------------------------------------------

message: 1
date: Fri, 8 Dec 2023 13:16:00 -0500
subject: RE: FLASH: Security Bulletin: IBM i Access Client Solutions
is vulnerable to remote code execution and failing to secure passwords
due to multiple vulnerabilities (2023.12.08)

I saw the same, couldn't come up with any details on any of the 3 CVE vuln numbers... i'm mainly looking for the defined severity level (critical, high, etc.) as a first step to evaluate...

------------------------------------

From: "Dan Bale" <dan.bale@xxxxxxxxxxxxxxxxxxxxx>
To: "Midrange Systems Technical Discussion"
<midrange-l@xxxxxxxxxxxxxxxxxx>
Date: 12/08/2023 11:43 AM
Subject: RE: FLASH: Security Bulletin: IBM i Access Client Solutions is
vulnerable to remote code execution and failing to secure
passwords due to multiple vulnerabilities (2023.12.08)
Sent by: "MIDRANGE-L" <midrange-l-bounces@xxxxxxxxxxxxxxxxxx>



Clicking all three of those CVEs return "No results can be retrieved by using the search term." but you can search for them on the site.
Unfortunately, there is no information on any of those three CVEs.

Anyone know whether the vulns require physical access to the client?

Dan Bale
Specialty Developer III


________________________________
Please note: Florida has very broad public records laws. Many written communications to or from The Florida Bar regarding Bar business may be considered public records, which must be made available to anyone upon request. Your e-mail communications may therefore be subject to public disclosure.

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.