CVE-2014-3566 - Fix Availability Document for Oracle Communications Subscriber Data Management (SDM)

Asset ID:	1-79-1946123.1
Update Date:	2018-05-01
Keywords:

Solution Type Predictive Self-Healing Sure

Solution 1946123.1 : CVE-2014-3566 - Fix Availability Document for Oracle Communications Subscriber Data Management (SDM) - 10901

Applies to:

Oracle Communications Subscriber Data Management (SDM)
Tekelec

Purpose

This document provides details on the configuration changes necessary to mitigate the security vulnerability referenced by CVE-2014-3566.

Scope

Oracle Communications Subscriber Data Management (SDM) Version 7.7 to 9.3

Details

A standard Subscriber Data Management (SDM) deployment may include either SPR or HLR application servers.

The following table lists the server types and which procedure(s) are applicable:

Server Type

SSL Server

Procedure

SPR

HLR

Tomcat

Procedure 1

Procedure 1

Step #	Steps
1.	Log in as root on the source server. login: root Password: <current root password>
2.	Backup the server.xml file. # cd /usr/local/tomcat/conf/ # cp server.xml server.xml.save
3.	Edit the server.xml file # vi /usr/local/tomcat/conf/server.xml Find the line which contains the section: sslProtocol="TLS" Edit the section to look like this: sslProtocols="TLSv1, TLSv1.1, TLSv1.2" Save the file and exit vi. Verify that the changes were placed correctly: # grep sslProtocols /usr/local/tomcat/conf/server.xml You should get output that looks like: sslProtocols="TLSv1, TLSv1.1, TLSv1.2"
4.	Restart tomcat to activate changes # cd /blue/bin/init.d # ./WebCI restart

Attachments

This solution has no attachment