Lucene search
+L

72 matches found

Citrix
Citrix
added 2018/05/17 12:0 a.m.14 views

The Citrix License Server certificate is not in the Delivery Controller's trusted root store

License Server certificate not in the Delivery Controller's trusted root certificate store. This will impact Studio and Director managing and displaying information from the license server...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/11/20 5:45 p.m.46 views

A week in security (November 13 – November 19)

Last week, we gave you some tips for the inevitable online chaos that is Cyber Monday, explained how "trusted" root certificates can sometimes be anything but, and explored the strange world of catphishing. We also pulled apart some malware found on Google Play and laid out the specifics of the...

6.8AI score
Exploits0
CNVD
CNVD
added 2017/11/20 12:0 a.m.5 views

Savitech driver packages for Windows man-in-the-middle attack vulnerability

Savitech driver packages for Windows is a driver package for signal processing chips based on the Windows platform. A security vulnerability exists in the Savitech driver packages for Windows-based platforms that originates when a program installs a self-signed certificate into the Trusted Root...

7.4CVSS6.7AI score0.01458EPSS
Exploits1References1
NVD
NVD
added 2017/11/10 2:29 a.m.14 views

CVE-2017-9758

Savitech driver packages for Windows silently install a self-signed certificate into the Trusted Root Certification Authorities store, aka "Inaudible Subversion."...

7.4CVSS7.5AI score0.01458EPSS
Exploits1References4
OSV
OSV
added 2017/11/10 2:29 a.m.5 views

CVE-2017-9758

Savitech driver packages for Windows silently install a self-signed certificate into the Trusted Root Certification Authorities store, aka "Inaudible Subversion."...

7.4CVSS5.8AI score
Exploits0References4
Prion
Prion
added 2017/11/10 2:29 a.m.11 views

Session fixation

Savitech driver packages for Windows silently install a self-signed certificate into the Trusted Root Certification Authorities store, aka "Inaudible Subversion."...

5.8CVSS7.1AI score0.01458EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2017/11/09 7:0 p.m.21 views

CVE-2017-9758

Savitech driver packages for Windows silently install a self-signed certificate into the Trusted Root Certification Authorities store, aka "Inaudible Subversion."...

7.5AI score0.01458EPSS
Exploits1References4
Microsoft Malware Protection
Microsoft Malware Protection
added 2017/08/08 1:0 p.m.27 views

Microsoft to remove WoSign and StartCom certificates in Windows 10

Microsoft has concluded that the Chinese Certificate Authorities CAs WoSign and StartCom have failed to maintain the standards required by our Trusted Root Program. Observed unacceptable security practices include back-dating SHA-1 certificates, mis-issuances of certificates, accidental certifica...

6.9AI score
Exploits0
Cvelist
Cvelist
added 2016/03/12 9:0 p.m.27 views

CVE-2016-0818

The caching functionality in the TrustManagerImpl class in TrustManagerImpl.java in Conscrypt in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before 2016-03-01 mishandles the distinction between an intermediate CA and a trusted root CA, which allows man-in-the-middle attackers to...

5.7AI score0.00268EPSS
Exploits0References4
Cvelist
Cvelist
added 2012/11/14 11:0 a.m.21 views

CVE-2012-4948

The default configuration of Fortinet Fortigate UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier for man-in-the-middle attackers to spoof SSL servers by leveraging the presence of the...

6.3AI score0.00336EPSS
Exploits0References3
Metasploit
Metasploit
added 2011/10/23 5:17 p.m.19 views

Windows Manage Certificate Authority Removal

This module allows the attacker to remove an arbitrary CA certificate from the victim's Trusted Root store. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows Manage Certificate Authority...

0.8AI score
Exploits0
securityvulns
securityvulns
added 2002/12/28 12:0 a.m.36 views

Full Disclosure: Windows File Protection Arbitrary Certificate Chain Vulnerability

============================================================================ == SECURITY ALERT Windows File Protection Arbitrary Certificate Chain Vulnerability December 26, 2002 Full Disclosure, [email protected] and others December 24, 2002 Private Disclosure Jason Coombs [email protected]...

0.1AI score
Exploits0
Rows per page
Query Builder