IBM Tivoli Application Dependency Discovery Manager CVE-2012-5770 Man in the Middle Vulnerability

Bugtraq ID:	58297
Class:	Design Error
CVE:	CVE-2012-5770
Remote:	Yes
Local:	No
Published:	Mar 04 2013 12:00AM
Updated:	Mar 19 2015 09:43AM
Credit:	IBM
Vulnerable:	IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.0
Not Vulnerable:

IBM Tivoli Application Dependency Discovery Manager CVE-2012-5770 Man in the Middle Vulnerability

Tivoli Application Dependency Discovery Manager is prone to a security vulnerability that allows attackers to perform man-in-the-middle attacks.

Remote attackers can exploit this issue to gain access to sensitive information through a man-in-the-middle attack. Successful exploits will lead to other attacks.

Tivoli Application Dependency Discovery Manager 7.2.0.0 through versions 7.2.1.3 are vulnerable.

IBM Tivoli Application Dependency Discovery Manager CVE-2012-5770 Man in the Middle Vulnerability

Attackers can use readily available network utilities.

IBM Tivoli Application Dependency Discovery Manager CVE-2012-5770 Man in the Middle Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

IBM Tivoli Application Dependency Discovery Manager CVE-2012-5770 Man in the Middle Vulnerability

References: