Vulnerabilities of the enterprise automation system 1C:Enterprise, allowing a malicious individual to trigger service failures or gain access to encrypted data without knowing the encryption key

🗓️ 05 Jul 2016 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Vulnerabilities in 1C:Enterprise and cryptographic library enable remote service failures or access to encrypted data without the key.

Reporter	Title	Published	Views	Family All 2814
FreeBSD	cURL library -- heap corruption in curl_easy_unescape	22 Jun 201300:00	–	freebsd
FreeBSD	OpenSSL -- Multiple problems in crypto(3)	28 Sep 200600:00	–	freebsd
FreeBSD	FreeBSD -- OpenSSL multiple vulnerabilities	3 May 201200:00	–	freebsd
FreeBSD	OpenSSL -- multiple vulnerabilities	8 Jan 201500:00	–	freebsd
FreeBSD	openssl -- potential SSL 2.0 rollback	11 Oct 200500:00	–	freebsd
FreeBSD	OpenSSL -- multiple vulnerabilities	4 Jan 201200:00	–	freebsd
FreeBSD	cURL -- inappropriate GSSAPI delegation	23 Jun 201100:00	–	freebsd
FreeBSD	mozilla -- multiple vulnerabilities	30 Mar 201000:00	–	freebsd
FreeBSD	OpenSSL -- multiple vulnerabilities	19 Mar 201500:00	–	freebsd
FreeBSD	LibreSSL -- DTLS vulnerability	8 Jan 201500:00	–	freebsd

Source	Link
cvedetails	www.cvedetails.com/details.php
cvedetails	www.cvedetails.com/details.php
cvedetails	www.cvedetails.com/details.php
cvedetails	www.cvedetails.com/details.php
cvedetails	www.cvedetails.com/details.php
cvedetails	www.cvedetails.com/details.php
cvedetails	www.cvedetails.com/details.php
cvedetails	www.cvedetails.com/details.php
cvedetails	www.cvedetails.com/details.php
cvedetails	www.cvedetails.com/details.php

21 Jun 2017 00:00Current

CVSS 27.5

EPSS0.91945

onec enterprise cryptographic library remote service failures encrypted data access without key