Lucene search
K

534 matches found

RedHat Linux
RedHat Linux
added 2016/07/18 1:51 p.m.4 views

TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.1AI score0.0288EPSS
Exploits0References7
OSV
OSV
added 2016/05/23 10:0 p.m.9 views

MGASA-2016-0207 Updated golang package fixes CVE-2016-3959

Updated golang packages fix security vulnerability: Go has an infinite loop in several big integer routines that makes Go programs vulnerable to remote denial of service attacks. Programs using HTTPS client authentication or the Go ssh server libraries are both exposed to this vulnerability...

7.5CVSS7.7AI score0.04335EPSS
Exploits0References3
Mageia
Mageia
added 2016/05/23 10:0 p.m.44 views

Updated golang package fixes CVE-2016-3959

Updated golang packages fix security vulnerability: Go has an infinite loop in several big integer routines that makes Go programs vulnerable to remote denial of service attacks. Programs using HTTPS client authentication or the Go ssh server libraries are both exposed to this vulnerability...

7.5CVSS1.7AI score0.04335EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/05/09 12:0 a.m.31 views

Amazon Linux: Security Advisory (ALAS-2016-687)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.04335EPSS
Exploits0References2
Amazon
Amazon
added 2016/04/21 12:0 a.m.45 views

Medium: golang

Issue Overview: An infinite loop in several big integer routines was discovered that makes Go programs vulnerable to remote denial of service attacks. Programs using HTTPS client authentication or the Go ssh server libraries are both exposed to this vulnerability. Affected Packages: golang Issue...

7.5CVSS8.2AI score0.04335EPSS
Exploits0
FreeBSD
FreeBSD
added 2016/04/05 12:0 a.m.35 views

go -- remote denial of service

Jason Buberel reports: Go has an infinite loop in several big integer routines that makes Go programs vulnerable to remote denial of service attacks. Programs using HTTPS client authentication or the Go ssh server libraries are both exposed to this vulnerability...

7.5CVSS1.8AI score0.04335EPSS
Exploits0References2
Citrix
Citrix
added 2016/03/17 12:0 a.m.8 views

Error: "Intermediate CA or Root CA Certificate Signature Verification Failed" on NetScaler Gateway

Enrollment and authentication works with LDAP policy however unable to enroll devices using CBA client certification authentication. Authentication is denied at NetScaler Gateway.While disabling authentication on NetScaler Gateway, client certificate can be pushed to the device using a device...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2016/02/16 12:0 a.m.48 views

F5 BIG-IP - SLOTH: TLS 1.2 handshake vulnerability CVE-2015-7575

The remote host is missing a security patch. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/h:f5:big-ip"; if description...

5.9CVSS6.5AI score0.0288EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/02/11 12:0 a.m.52 views

Amazon Linux: Security Advisory (ALAS-2016-645)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.9AI score0.0288EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2016/02/02 1:52 p.m.4 views

TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.1AI score0.0288EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2016/02/02 10:4 a.m.4 views

TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.1AI score0.0288EPSS
Exploits0References7
Citrix
Citrix
added 2016/02/02 12:0 a.m.7 views

FAQ: Key Sizes/Certificates Supported by ADC

Q: What are the key sizes/certificates supported by ADC? A : An MPX appliance supports certificates of 512 or more bits, up to the following sizes: 4096-bit server certificate on the virtual server 4096-bit client certificate on the service 4096-bit CA certificate includes intermediate and root...

7.3AI score
Exploits0
RedHat Linux
RedHat Linux
added 2016/01/21 11:54 a.m.2 views

TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.1AI score0.0288EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2016/01/21 11:39 a.m.4 views

TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.1AI score0.0288EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2016/01/21 11:38 a.m.4 views

TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.1AI score0.0288EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2016/01/20 7:30 p.m.5 views

TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.1AI score0.0288EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2016/01/20 7:14 p.m.19 views

TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.1AI score0.0288EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2016/01/08 1:39 a.m.2 views

TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.1AI score0.0288EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2016/01/08 1:26 a.m.2 views

TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.1AI score0.0288EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2016/01/08 12:0 a.m.35 views

RedHat Update for nss RHSA-2016:0007-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.9AI score0.0288EPSS
Exploits0References2
Rows per page
Query Builder