Lucene search
HistoryAug 15, 2015 - 12:59 a.m.
CVE-2015-2434
microsoft
xml core services
ssl 2.0
vulnerability
nvd
cve-2015-2434
6.3 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.011 Low
EPSS
Percentile
84.1%
Microsoft XML Core Services 3.0 and 5.0 supports SSL 2.0, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and conducting a decryption attack, aka “MSXML Information Disclosure Vulnerability,” a different vulnerability than CVE-2015-2471.
Affected configurations
Node
microsoftxml_core_servicesMatch3.0
ORmicrosoftxml_core_servicesMatch5.0
Related
cvelist
cvelist
CVE-2015-2434
2015-08-15 00:00:00
CVE-2015-2471
2015-08-15 00:00:00
nvd
nvd
CVE-2015-2471
2015-08-15 00:59:30
CVE-2015-2434
2015-08-15 00:59:10
prion
prion
Information disclosure
2015-08-15 00:59:00
Information disclosure
2015-08-15 00:59:00
cve
cve
CVE-2015-2471
2015-08-15 00:59:30
symantec
symantec
nessus
nessus
openvas
openvas
mskb
mskb
kaspersky
kaspersky
KLA10646 Multiple vulnerabilities in Microsoft Windows
2015-08-11 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2015-08-24 00:00:00
6.3 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.011 Low
EPSS
Percentile
84.1%
Related for CVE-2015-2434