.NET Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists when Microsoft .NET Framework and .NET Core components do not completely validate certificates. An attacker could present a certificate that is marked invalid for a specific use, but the component uses it for that purpose. This action disregards the...

EulerOS 2.0 SP1 : ipa (EulerOS-SA-2017-1013)

According to the versions of the ipa packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - It was discovered that the default IdM password policies that lock out accounts after a certain number of failed login attempts were also applied t...

Botan X509_Certificate::allowed_usage function design vulnerability

Botan is a cryptographic library written in C++11 and distributed under the Simplified BSD license. A design flaw in the Botan X509Certificate::allowedusage function can be exploited by an attacker to cause some impact on calls with more than one KeyUsage set in the enumeration value...

Design/Logic Flaw

The X509Certificate::allowedusage function in botan 1.11.x before 1.11.31 might allow attackers to have unspecified impact by leveraging a call with more than one KeyUsage set in the enum value...

CVE-2016-6879

The X509Certificate::allowedusage function in botan 1.11.x before 1.11.31 might allow attackers to have unspecified impact by leveraging a call with more than one KeyUsage set in the enum value...

ipa: Insufficient permission check in certprofile-mod

It was found that IdM's certprofile-mod command did not properly check the user's permissions while modifying certificate profiles. An authenticated, unprivileged attacker could use this flaw to modify profiles to issue certificates with arbitrary naming or key usage information and subsequently...

Moderate: Red Hat Security Advisory: ipa security update

An update for ipa is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

RedHat Update for ipa RHSA-2017:0001-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the Linter Bastion database management system allows a malicious individual to decode administrator login credentials.

By default, user passwords in the Linter Bastion Database Management System are encrypted using a less reliable encryption algorithm. The recovery of the password from the encrypted text takes less than a second. For example, in the “3.11” file, with an offset of 4203, the Linter Bastion Database...

S Broker Mobile App - Certificates or keys found, Insecure KeyStore, KeyStore usage vulnerabilities

HackApp vulnerability scanner discovered that application S Broker Mobile App published at the 'play' market has multiple vulnerabilities...

PolarSSL 'asn1_get_sequence_of' Function Uninitialized Pointer RCE

PolarSSL contains a flaw when parsing ASN.1 sequences from X.509 certificates due to freeing an uninitialized pointer by the function 'asn1getsequenceof' within file 'asn1parse.c'. An unauthenticated, remote attacker, using a specially crafted certificate, can exploit this flaw to cause a denial ...

Mandriva Linux Security Advisory : openssl (MDVSA-2014:090)

Updated openssl packages fix security vulnerability : A read buffer can be freed even when it still contains data that is used later on, leading to a use-after-free. Given a race condition in a multi-threaded application it may permit an attacker to inject data from one connection into another or...

Updated openssl packages fix CVE-2010-5298

Updated openssl packages fix security vulnerability: A read buffer can be freed even when it still contains data that is used later on, leading to a use-after-free. Given a race condition in a multi-threaded application it may permit an attacker to inject data from one connection into another or...

Debian DSA-2908-1 : openssl - security update

Multiple vulnerabilities have been discovered in OpenSSL. The following Common Vulnerabilities and Exposures project ids identify them : - CVE-2010-5298 A read buffer can be freed even when it still contains data that is used later on, leading to a use-after-free. Given a race condition in a...

nss: CERT_VerifyCert returns SECSuccess (saying certificate is good) even for bad certificates (MFSA 2013-103)

The CERTVerifyCert function in lib/certhigh/certvfy.c in Mozilla Network Security Services NSS 3.15 before 3.15.3 provides an unexpected return value for an incompatible key-usage certificate when the CERTVerifyLog argument is valid, which might allow remote attackers to bypass intended access...

Amazon Linux AMI : nspr (ALAS-2013-266)

A flaw was found in the way NSS handled invalid handshake packets. A remote attacker could use this flaw to cause a TLS/SSL client using NSS to crash or, possibly, execute arbitrary code with the privileges of the user running the application. CVE-2013-5605 It was found that the fix for...

Important: nspr

Issue Overview: A flaw was found in the way NSS handled invalid handshake packets. A remote attacker could use this flaw to cause a TLS/SSL client using NSS to crash or, possibly, execute arbitrary code with the privileges of the user running the application. CVE-2013-5605 It was found that the f...

CentOS Update for nspr CESA-2013:1829 centos6

Check for the Version of nspr OpenVAS Vulnerability Test CentOS Update for nspr CESA-2013:1829 centos6 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CentOS Update for nss-util CESA-2013:1829 centos6

Check for the Version of nss-util OpenVAS Vulnerability Test CentOS Update for nss-util CESA-2013:1829 centos6 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

RedHat Update for nss, nspr, and nss-util RHSA-2013:1829-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...