Lucene search
K

4457 matches found

Tenable Nessus
Tenable Nessus
added 2013/02/04 12:0 a.m.30 views

Fedora 17 : jakarta-commons-httpclient-3.1-12.fc17 (2013-1189)

This update fixes a security vulnerability that caused jakarta-commons-httpclient not to verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allowed man-in-the-middle attackers to spoof SSL servers via...

5.8CVSS6.8AI score0.09254EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2013/02/04 12:0 a.m.15 views

Fedora Update for jakarta-commons-httpclient FEDORA-2013-1189

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.8CVSS7.5AI score0.09254EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/02/04 12:0 a.m.31 views

Fedora Update for jakarta-commons-httpclient FEDORA-2013-1289

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.8CVSS7.5AI score0.09254EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/02/04 12:0 a.m.21 views

Fedora Update for jakarta-commons-httpclient FEDORA-2013-1203

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.8CVSS7.5AI score0.09254EPSS
Exploits0References2
Fedora
Fedora
added 2013/02/01 4:49 p.m.26 views

[SECURITY] Fedora 16 Update: jakarta-commons-httpclient-3.1-12.fc16

The Hyper-Text Transfer Protocol HTTP is perhaps the most significant protocol used on the Internet today. Web services, network-enabled appliances and the growth of network computing continue to expand the role of the HTTP protocol beyond user-driven web browsers, and increase the number of...

5.8CVSS1AI score0.09254EPSS
Exploits0
Fedora
Fedora
added 2013/02/01 4:45 p.m.36 views

[SECURITY] Fedora 17 Update: jakarta-commons-httpclient-3.1-12.fc17

The Hyper-Text Transfer Protocol HTTP is perhaps the most significant protocol used on the Internet today. Web services, network-enabled appliances and the growth of network computing continue to expand the role of the HTTP protocol beyond user-driven web browsers, and increase the number of...

5.8CVSS1AI score0.09254EPSS
Exploits0
Fedora
Fedora
added 2013/02/01 4:27 p.m.42 views

[SECURITY] Fedora 18 Update: jakarta-commons-httpclient-3.1-12.fc18

The Hyper-Text Transfer Protocol HTTP is perhaps the most significant protocol used on the Internet today. Web services, network-enabled appliances and the growth of network computing continue to expand the role of the HTTP protocol beyond user-driven web browsers, and increase the number of...

5.8CVSS1AI score0.09254EPSS
Exploits0
Exploit DB
Exploit DB
added 2013/01/01 12:0 a.m.25 views

Linux/x86 - Bind TCP (1111/TCP) Shell + SO_REUSEADDR Set (Avoiding SIGSEGV) + Null-Free Shellcode (103 bytes)

Linux/x86 - Bind TCP 1111/TCP Shell + SOREUSEADDR Set Avoiding SIGSEGV + Null-Free Shellcode 103 bytes. Shellcode exploit for Linuxx86 platform / Shell Bind TCP Shellcode - C Language Linux/x86 Written in 2013 by Geyslan G. Bem, Hacking bits http://hackingbits.com [email protected] This source is...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2013/01/01 12:0 a.m.25 views

Linux/x86 - Bind TCP (Random TCP Port) Shell + Null-Free Shellcode (57 bytes)

Linux/x86 - Bind TCP Random TCP Port Shell + Null-Free Shellcode 57 bytes. Shellcode exploit for Linuxx86 platform / Tiny Shell Bind TCP Random Port Shellcode - C Language Linux/x86 Written in 2013 by Geyslan G. Bem, Hacking bits http://hackingbits.com [email protected] This source is licensed...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2013/01/01 12:0 a.m.30 views

Linux/x86 - Reverse TCP Shellcode (67 bytes)

Linux/x86 - Reverse TCP Shellcode 67 bytes. Shellcode exploit for Linx86 platform / Tiny Shell Reverse TCP Shellcode - C Language Linux/x86 Written in 2013 by Geyslan G. Bem, Hacking bits http://hackingbits.com [email protected] This source is licensed under the Creative Commons...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2013/01/01 12:0 a.m.37 views

Linux/x86 - Reverse TCP (127.1.1.1:55555/TCP) Shell + Null-Free Shellcode (72 bytes)

Linux/x86 - Reverse TCP 127.1.1.1:55555/TCP Shell + Null-Free Shellcode 72 bytes. Shellcode exploit for Linuxx86 platform / Shell Reverse TCP Shellcode - C Language Linux/x86 Written in 2013 by Geyslan G. Bem, Hacking bits http://hackingbits.com [email protected] This source is licensed under the...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/12/20 12:0 a.m.48 views

Fedora 16 : tomcat-7.0.33-1.fc16 (2012-20151)

Updated to 7.0.33 - Resolves: rhbz 873620 need chkconfig for update-alternatives - Resolves: rhbz 883676,883691,883704,873707 fix several security issues - Resolves: rhbz 883806 refix logdir ownership - Resolves: rhbz 820119 Remove bundled apache-commons-dbcp Note that Tenable Network Security...

5CVSS6AI score0.12098EPSS
Exploits5References13
RedHat Linux
RedHat Linux
added 2012/12/04 7:24 p.m.3 views

Moderate: Red Hat Security Advisory: CloudForms Commons 1.1 security update

Updated CloudForms Commons packages that fix several security issues are now available. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for each...

7.5CVSS7AI score0.04923EPSS
Exploits14References16
NVD
NVD
added 2012/11/04 10:55 p.m.21 views

CVE-2012-5783

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

5.8CVSS6.3AI score0.09254EPSS
Exploits0References18
OSV
OSV
added 2012/11/04 10:55 p.m.4 views

DEBIAN-CVE-2012-5783

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

5.8CVSS9.1AI score0.09254EPSS
Exploits0References1
Prion
Prion
added 2012/11/04 10:55 p.m.24 views

Code injection

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

5.8CVSS6.6AI score0.09254EPSS
Exploits0References18Affected Software2
Cvelist
Cvelist
added 2012/11/04 10:0 p.m.24 views

CVE-2012-5783

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

6.7AI score0.09254EPSS
Exploits0References18
CVE
CVE
added 2012/11/04 10:0 p.m.525 views

CVE-2012-5783

Apache Commons HttpClient 3.x (as used in Amazon FPS Java SDK and related products) is affected by CVE-2012-5783: the code does not verify that the server hostname matches the CN/subjectAltName in the X.509 certificate, enabling potential MITM spoofing with arbitrary certificates. AIX advisories,...

5.8CVSS6.8AI score0.09254EPSS
Exploits0References18Affected Software1
Debian CVE
Debian CVE
added 2012/11/04 10:0 p.m.36 views

CVE-2012-5783

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

5.8CVSS7.3AI score0.09254EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2012/11/04 12:0 a.m.43 views

CVE-2012-5783

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

5.8CVSS6.9AI score0.09254EPSS
Exploits0References3
Rows per page
Query Builder