Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10342
HistoryJun 24, 2014 - 12:00 a.m.

KLA10342 OSI vulnerability in Stunnel

2014-06-2400:00:00
Kaspersky Lab
threats.kaspersky.com
111

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

71.0%

JSON

Detect date:

06/24/2014

Severity:

Warning

Description:

Improper work with OpenSSL was found in Stunnel. By exploiting this vulnerability malicious users can obtain private keys or certificates. This vulnerability can be exploited remotely at a point related to children’s processes.

Affected products:

Stunnel versions 4.56 and earlier

Solution:

Update to latest version

Original advisories:

Stunnel Changelog

Impacts:

OSI

Related products:

Stunnel

CVE-IDS:

CVE-2014-00164.3Warning

Related

gentoo 1
mageia 1
cve 1
seebug 1
openvas 6
prion 1
debiancve 1
securityvulns 2
ubuntucve 1
cvelist 1
nessus 3
fedora 2
rosalinux 1
gentoo
gentoo
stunnel: Information disclosure
2014-08-29 00:00:00
mageia
mageia
Updated stunnel package fixes security vulnerability
2014-03-31 23:40:37
cve
cve
CVE-2014-0016
2014-03-24 16:31:00
seebug
seebug
Stunnel PRINGεˆε§‹εŒ–ζΌζ΄ž
2014-03-11 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201408-14
2015-09-29 00:00:00
Mageia: Security Advisory (MGASA-2014-0144)
2022-01-28 00:00:00
Fedora Update for stunnel FEDORA-2014-5321
2014-05-05 00:00:00
prion
prion
Code injection
2014-03-24 16:31:00
debiancve
debiancve
CVE-2014-0016
2014-03-24 16:31:00
securityvulns
securityvulns
[ MDVSA-2015:096 ] stunnel
2015-04-20 00:00:00
stunnel crypto vulnerabilities
2015-04-20 00:00:00
ubuntucve
ubuntucve
CVE-2014-0016
2014-03-24 00:00:00
cvelist
cvelist
CVE-2014-0016
2014-03-23 15:00:00
nessus
nessus
Mandriva Linux Security Advisory : stunnel (MDVSA-2015:096)
2015-03-30 00:00:00
GLSA-201408-14 : stunnel: Information disclosure
2014-08-30 00:00:00
stunnel < 5.00 PRNG State Security Weakness
2014-03-26 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: stunnel-5.01-1.fc20
2014-04-30 04:07:51
[SECURITY] Fedora 19 Update: stunnel-5.01-1.fc19
2014-04-30 04:04:04
rosalinux
rosalinux
Advisory ROSA-SA-2021-1978
2021-07-02 18:10:58

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

71.0%

JSON
Related for KLA10342
gentoo1mageia1cve1seebug1openvas6prion1debiancve1securityvulns2ubuntucve1cvelist1nessus3fedora2rosalinux1