Loading...
Skip to content

Business ServicePortal

Patch Resolves Threat Intelligence Exchange Server Vulnerability
 

(26/4/2017)
One vulnerability in Threat Intelligence Exchange Server have been discovered and resolved.

AFFECTED SOFTWARE
  • Threat Intelligence Exchange Server 2.0.1.178 and earlier
REMEDIATED/PATCHED VERSIONS
The vulnerability is remediated in these versions:
  • 2.0.1.188
IMPACT
  • CWE-83(CVSS: 6.5; Severity: Medium) Loop with Unreachable Exit Condition. Linux kernel before 4.9.11 allows remote attackers to cause a denial of service (infinite loop and soft lockup) via vectors involving a TCP packet with the URG flag.
RECOMMENDATION
McAfee recommends that all customers verify that they have applied the latest updates. Impacted users should install the relevant patches or hotfixes. For full instructions and information, see Knowledge Base article SB10195, [McAfee Security Bulletin - Threat Intelligence Exchange server 2.0.1 Hotfix 1 fixes a Linux kernel vulnerability (CVE-2017-6214) (https://kc.mcafee.com/corporate/index?page=content&id=SB10195)

SNS Weekly Roundup (April 25)
 

End of Life for MOVE AV Agentless 3.6.x and Multi-Platform 3.6.x
 

Data Loss Prevention 10 Patch 2 Hotfix 30 Now Available
 

5900 Anti-Malware Engine is Scheduled to Release as an AutoUpdate (except for ENS) on April 27, 2017
 

Welcome to the ServicePortal
 

 

How are we doing?
ServicePortal feedback »

 

The Association of
Support Professionals.
This year's Ten Best
Web Support Sites