CVE-2017-5872
N/A
N/A
Summary
The TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 57.1 before 57.152, 58.1 before 58.142, or 59.1 before 59.172, when running a TLS 1.2 service, allows remote attackers to cause a denial of service (network connectivity disruption) via a client hello with a signature_algorithms extension above those defined in RFC 5246, which triggers a full memory dump.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=42
- http://www.securityfocus.com/bid/96782
References
- https://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=42
- http://www.securityfocus.com/bid/96782
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.