Lucene search
Arch LinuxASA-201410-4HistoryOct 15, 2014 - 12:00 a.m.
zeromq: Man-in-the-middle downgrade and replay attack
2014-10-1500:00:00
Arch Linux
lists.archlinux.org
27
EPSS
0.002
Percentile
64.5%
-
CVE-2014-7202 (downgrade attack)
A bug in stream_engine.cpp allows man-in-the-middle attackers to conduct
downgrade attacks via a crafted connection request. -
CVE-2014-7203 (replay attack)
libzmq did not ensure that nonces are unique, which allows
man-in-the-middle attackers to conduct replay attacks via unspecified
vectors.
Related
nessus
nessus
openSUSE Security Update : zeromq (openSUSE-SU-2014:1493-1)
2014-11-26 00:00:00
openSUSE Security Update : zeromq (openSUSE-SU-2014:1381-1)
2014-11-11 00:00:00
osv
osv
libzmq5-4.2.0-1.1 on GA media
2024-06-15 00:00:00
ubuntucve
ubuntucve
CVE-2014-7202
2014-10-08 00:00:00
CVE-2014-7203
2014-10-08 00:00:00
veracode
veracode
Man-in-the-Middle (MitM)
2017-02-02 06:48:43
Replay Attack
2017-02-02 07:10:30
nvd
nvd
CVE-2014-7202
2014-10-08 19:55:04
CVE-2014-7203
2014-10-08 19:55:04
cvelist
cvelist
CVE-2014-7202
2014-10-08 19:00:00
CVE-2014-7203
2014-10-08 19:00:00
cve
cve
CVE-2014-7202
2014-10-08 19:55:04
CVE-2014-7203
2014-10-08 19:55:04
debiancve
debiancve
CVE-2014-7203
2014-10-08 19:55:04
CVE-2014-7202
2014-10-08 19:55:04
prion
prion
Design/Logic Flaw
2014-10-08 19:55:00
Cross site request forgery (csrf)
2014-10-08 19:55:00