×
The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.
this came in one of the emails I get from IBM
Software
Software: Security Bulletin: IBM i Access Client Solutions is vulnerable
to remote code execution and failing to secure passwords due to multiple
vulnerabilities
IBM i Access Client Solutions is vulnerable to remote code execution due
to a flaw which fails to authenticate the origin of a serialized object
(CVE-2023-45185), and insecurely storing passwords by allowing the
password encryption key to be retrieved (CVE-2023-45184) or decoded
using a brute force attack (CVE-2023-45182). IBM has addressed these
CVEs by providing a fix to IBM i Access Client Solutions as described in
the remediation/fixes section.
ChadB@xxxxxxxxxxxxxxxxxxxxxxxx wrote on 12/8/2023 12:16 PM:
I saw the same, couldn't come up with any details on any of the 3 CVE vuln
numbers... i'm mainly looking for the defined severity level (critical,
high, etc.) as a first step to evaluate...
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact
[javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
