The vulnerability in the JSSE component of Oracle Java SE, Java SE Embedded, and Jrockit software platforms allows attackers to gain unauthorized access to data or cause partial service interruptions.

The vulnerability of the JSE component in Oracle Java SE, Java SE Embedded, and Jrockit software platforms is related to access control deficiencies. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to data or cause a partial service failure using...

How to Secure ICA Connection to VDA using SSL

To secure the ICA connection to VDA using SSL...

Shift Wage Planer Trial - Customized SSL, External URLs, KeyStore usage vulnerabilities

HackApp vulnerability scanner discovered that application Shift Wage Planer Trial published at the 'play' market has multiple vulnerabilities...

mysql: use of SSL/TLS can not be enforced in mysql client library (oCERT-2015-003, BACKRONYM)

It was found that the MySQL client library permitted but did not require a client to use SSL/TLS when establishing a secure connection to a MySQL server using the "--ssl" option. A man-in-the-middle attacker could use this flaw to strip the SSL/TLS protection from a connection between a client an...

HP System Management Anonymous Access Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 /HP System Management Homepage/ includ...

SSL MITM Vulnerability

No description provided by source. include errno.h include stdio.h include string.h include unistd.h include sys/time.h include sys/socket.h include netinet/in.h include arpa/inet.h include netdb.h include openssl/ssl.h include openssl/ssl3.h void failconst char proc perrorproc; exit1; void...