Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-3902HistoryOct 14, 2010 - 5:58 a.m.
CVE-2010-3902
2010-10-1405:58:42
Debian Security Bug Tracker
security-tracker.debian.org
9
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
73.5%
OpenConnect before 2.26 places the webvpn cookie value in the debugging output, which might allow remote attackers to obtain sensitive information by reading this output, as demonstrated by output posted to the public openconnect-devel mailing list.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | openconnect | < 3.02-1 | openconnect_3.02-1_all.deb |
| Debian | 11 | all | openconnect | < 3.02-1 | openconnect_3.02-1_all.deb |
| Debian | 10 | all | openconnect | < 3.02-1 | openconnect_3.02-1_all.deb |
| Debian | 999 | all | openconnect | < 3.02-1 | openconnect_3.02-1_all.deb |
| Debian | 13 | all | openconnect | < 3.02-1 | openconnect_3.02-1_all.deb |
Related
cvelist
cvelist
CVE-2010-3902
2010-10-12 21:00:00
openvas
openvas
Fedora Update for openconnect FEDORA-2010-18032
2010-12-09 00:00:00
Fedora Update for openconnect FEDORA-2010-18053
2010-12-09 00:00:00
Fedora Update for openconnect FEDORA-2010-18055
2010-12-09 00:00:00
prion
prion
Design/Logic Flaw
2010-10-14 05:58:00
nvd
nvd
CVE-2010-3902
2010-10-14 05:58:42
cve
cve
CVE-2010-3902
2010-10-14 05:58:42
nessus
nessus
Fedora 12 : openconnect-2.26-1.fc12 (2010-18032)
2010-11-30 00:00:00
Fedora 13 : openconnect-2.26-2.fc13 (2010-18053)
2010-11-30 00:00:00
Fedora 14 : openconnect-2.26-4.fc14 (2010-18055)
2010-11-30 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: openconnect-2.26-4.fc14
2010-11-29 21:36:22
[SECURITY] Fedora 13 Update: openconnect-2.26-2.fc13
2010-11-29 21:34:57
[SECURITY] Fedora 12 Update: openconnect-2.26-1.fc12
2010-11-29 21:31:47
ubuntucve
ubuntucve
CVE-2010-3902
2010-10-14 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
73.5%
Related for DEBIANCVE:CVE-2010-3902