IBM Support

IBM Tivoli Enterprise Portal Server Vulnerability (IV96017)

Download


Abstract

By default, the communications between the Tivoli Enterprise Portal client and server are not encrypted.

Download Description

While the default configuration can be changed, this patch allows for an administrator to override the default behavior.

The following patches have been provided for Distributed ITM to address the security vulnerabilities listed in the IBM Tivoli Monitoring Security Bulletin:

http://www.ibm.com/support/docview.wss?uid=swg22003402

 
VRMF Fix
6.3.0.7 6.3.0-TIV-ITM-FP0007-IV96017
6.2.3.5 6.2.3-TIV-ITM-FP0005-IV96017
6.2.2.9 6.2.2-TIV-ITM-FP0009-IV96017

Prerequisites

The prerequisite level for this fix is as follows:
IBM Tivoli Monitoring, version 6.3.0 Fix Pack 7 (6.3.0-TIV-ITM-FP0007)
- OR -
IBM Tivoli Monitoring, version 6.2.3 Fix Pack 5 (6.2.3-TIV-ITM-FP0005)
- OR -
IBM Tivoli Monitoring, version 6.2.2 Fix Pack 9 (6.2.2-TIV-ITM-FP0009)

[{"PRLabel":"6.2.2-TIV-ITM-FP0009","PRLang":"English","PRSize":"1","PRPlat":{"label":"AIX","code":"PF002"},"PRURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm~Tivoli&product=ibm/Tivoli/IBM+Tivoli+Monitoring&platform=All&release=6.2.2&function=fixId&fixids=6.2.2-TIV-ITM-FP0009"},{"PRLabel":"6.2.3-TIV-ITM-FP0005 ","PRLang":"English","PRSize":"1","PRPlat":{"label":"AIX","code":"PF002"},"PRURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm~Tivoli&product=ibm/Tivoli/IBM+Tivoli+Monitoring&platform=All&release=6.2.3&function=fixId&fixids=6.2.3-TIV-ITM-FP0005"},{"PRLabel":"6.3.0-TIV-ITM-FP0007","PRLang":"English","PRSize":"1","PRPlat":{"label":"AIX","code":"PF002"},"PRURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm~Tivoli&product=ibm/Tivoli/IBM+Tivoli+Monitoring&platform=All&release=6.3.0&function=fixId&fixids=6.3.0-TIV-ITM-FP0007"}]

Installation Instructions

Refer to the README file located in Fix Central for additional information.

Change History

Date Description
May 23, 2019 Updated 6.3.0-TIV-ITM-FP0007-IV96017 patch to install on both 630 Fix Pack 7 and later (i.e. Service Pack 1) levels.

On
[{"DNLabel":"6.2.2-TIV-ITM-FP0009-IV96017","DNDate":"10 Jul 2017","DNLang":"English","DNSize":"1","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm~Tivoli&product=ibm/Tivoli/IBM+Tivoli+Monitoring&platform=All&release=6.2.2.9&function=fixId&fixids=6.2.2-TIV-ITM-FP0009-IV96017","DNURL_FTP":" ","DDURL":null},{"DNLabel":"6.2.3-TIV-ITM-FP0005-IV96017","DNDate":"10 Jul 2017","DNLang":"English","DNSize":"1","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm~Tivoli&product=ibm/Tivoli/IBM+Tivoli+Monitoring&platform=All&release=6.2.3.5&function=fixId&fixids=6.2.3-TIV-ITM-FP0005-IV96017","DNURL_FTP":" ","DDURL":null},{"DNLabel":"6.3.0-TIV-ITM-FP0007-IV96017","DNDate":"10 Jul 2017","DNLang":"English","DNSize":"1","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm~Tivoli&product=ibm/Tivoli/IBM+Tivoli+Monitoring&platform=All&release=6.3.0.7&function=fixId&fixids=6.3.0-TIV-ITM-FP0007-IV96017","DNURL_FTP":" ","DDURL":null}]
[{"Product":{"code":"SSTFXA","label":"Tivoli Monitoring"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"ITM Tivoli Enterprise Portal Server V6","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF016","label":"Linux"},{"code":"PF033","label":"Windows"}],"Version":"6.3.0.7;6.2.3.5;6.2.2.9","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
23 May 2019

UID

swg24043856

Page Feedback