Lucene search
K

288 matches found

Cvelist
Cvelist
added 2019/10/01 7:39 p.m.32 views

CVE-2019-0231 Apache MINA SSLFilter security Issue

Handling of the closenotify SSL/TLS message does not lead to a connection closure, leading the server to retain the socket opened and to have the client potentially receive clear text messages afterward. Mitigation: 2.0.20 users should migrate to 2.0.21, 2.1.0 users should migrate to 2.1.1. This...

7.5AI score0.02201EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2019/10/01 7:39 p.m.12 views

CVE-2019-0231

Handling of the closenotify SSL/TLS message does not lead to a connection closure, leading the server to retain the socket opened and to have the client potentially receive clear text messages afterward. Mitigation: 2.0.20 users should migrate to 2.0.21, 2.1.0 users should migrate to 2.1.1. This...

7.5CVSS6.6AI score0.02201EPSS
Exploits0
Symantec
Symantec
added 2019/10/01 12:0 a.m.169 views

Apache MINA CVE-2019-0231 Information Disclosure Vulnerability

Description Apache MINA is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks. Technologies Affected Apache MINA 1.0 Apache MINA 2.0.20 Apache MINA 2.1.0 Redhat Gluster Storage 3.0 Redhat...

1.3AI score0.02201EPSS
Exploits0References2Affected Software4
Positive Technologies
Positive Technologies
added 2019/10/01 12:0 a.m.5 views

PT-2019-11202

Name of the Vulnerable Software and Affected Versions: Apache MINA versions prior to 2.0.21 Apache MINA versions 2.1.0 Description: The issue arises from the handling of the close notify SSL/TLS message, which does not result in a connection closure. As a consequence, the server retains the opene...

7.8CVSS6.8AI score0.02201EPSS
Exploits0References15
Exploit DB
Exploit DB
added 2016/09/15 12:0 a.m.40 views

Apache Mina 2.0.13 - Remote Command Execution

Apache Mina 2.0.13 - Remote Command Execution. Webapps exploit for Java platform Apache Mina 2.0.13 - Remote Command Execution Abstract Apache Mina 2.0.13 uses the OGNL library in the “IoSessionFinder” class. Its constructor takes into parameter one OGNL expression. Then this expression is execut...

Exploits0
0day.today
0day.today
added 2016/09/14 12:0 a.m.26 views

Apache Mina 2.0.13 - Remote Command Execution Exploit

Exploit for multiple platform in category remote exploits Source: https://remoteawesomethoughts.blogspot.com/2016/09/apache-mina-2013-remote-command.html Apache Mina 2.0.13 uses the OGNL library in the “IoSessionFinder” class. Its constructor takes into parameter one OGNL expression. Then this...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2016/09/14 12:0 a.m.13 views

Apache Mina 2.0.13 - Remote Command Execution

Apache Mina 2.0.13 - Remote Command Execution Source: https://remoteawesomethoughts.blogspot.com/2016/09/apache-mina-2013-remote-command.html Apache Mina 2.0.13 uses the OGNL library in the “IoSessionFinder” class. Its constructor takes into parameter one OGNL expression. Then this expression is...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2016/09/14 12:0 a.m.35 views

Apache Mina 2.0.13 - Remote Command Execution

Source: https://remoteawesomethoughts.blogspot.com/2016/09/apache-mina-2013-remote-command.html Apache Mina 2.0.13 uses the OGNL library in the “IoSessionFinder” class. Its constructor takes into parameter one OGNL expression. Then this expression is executed when the method “find” is called. Thi...

7.4AI score
Exploits0
Rows per page
Query Builder