change authentication conection protocol WM3700


Userlevel 1
Hi! i need change authentication conection protocol in my WM3700 controlller...by default the controller have openSSL but i want to connect with TLS, this to mitigate the vulnerability VN-2016-007 (CVE-2016-2108)....

2 replies

Userlevel 6
Daniel,

The WM3700 supports SSH, Telnet, HTTP, and HTTPS connection methods. Both SSH and HTTPS are implemented using OpenSSL 0.9.8za and would be vulnerable to VN-2016-007. There currently is no workaround or fix for this vulnerability on the WM3000 Series platforms.

You can follow the status of the vulnerability via the following KB article: https://gtacknowledge.extremenetworks.com/articles/Vulnerability_Notice/VN-2016-007-CVE-2016-2108-Ne...
Userlevel 1
Chad Smith wrote:

Daniel,

The WM3700 supports SSH, Telnet, HTTP, and HTTPS connection methods. Both SSH and HTTPS are implemented using OpenSSL 0.9.8za and would be vulnerable to VN-2016-007. There currently is no workaround or fix for this vulnerability on the WM3000 Series platforms.

You can follow the status of the vulnerability via the following KB article: https://gtacknowledge.extremenetworks.com/articles/Vulnerability_Notice/VN-2016-007-CVE-2016-2108-Ne...

Thanks Chad

Reply