Insecure Default Encryption Strength in IBM BigFix Remote Control

Insecure Default Encryption Strength in IBM BigFix Remote Control

CVE-2016-2951 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

IBM BigFix Remote Control before 9.1.3 does not properly set the default encryption strength, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and performing calculations on encrypted data.

Learn more about our Network Penetration Testing.