Lucene search
K

7445 matches found

Cvelist
Cvelist
added 2003/11/18 5:0 a.m.20 views

CVE-2003-0951

Partition Manager parmgr in HP-UX B.11.23 does not properly validate certificates that are provided by the cimserver, which allows attackers to obtain sensitive data or gain privileges...

6.5AI score0.01163EPSS
Exploits0References2
CVE
CVE
added 2003/11/18 5:0 a.m.48 views

CVE-2003-0951

The CVE-2003-0951 entry concerns HP-UX B.11.23 Partition Manager (parmgr). The root cause is improper validation of certificates provided by the cimserver, enabling attackers to access sensitive data or elevate privileges. Affected component: parmgr within HP-UX; vulnerable aspect is certificate ...

7.5CVSS6.9AI score0.01163EPSS
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2003/01/28 12:0 a.m.97 views

Incorrect Certificate Validation in Java Secure Socket Extension

According to SUN it has been reported that: "the Java Secure Socket Extension JSSE may incorrectly validate the digital certificate of a web site. This may result in untrustworthy web sites being authenticated for SSL transactions. The Java Plug-in and Java Web Start may incorrectly validate the...

0.9AI score
Exploits0
securityvulns
securityvulns
added 2002/11/21 12:0 a.m.62 views

UPDATE: Microsoft Security Bulletin MS02-050: Certificate Validation Flaw Could Enable Identity Spoofing (Q329115)

-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: Certificate Validation Flaw Could Enable Identity Spoofing Q329115 Released: 04 September 2002 Revised: 20 November 2002 version 4.0 Software: Microsoft Windows, Microsoft Office for...

Exploits0
Tenable Nessus
Tenable Nessus
added 2002/10/24 12:0 a.m.32 views

MS02-050: Certificate Validation Flaw Could Enable Identity Spoofing (328145)

The remote host contains a version of the CryptoAPI that could allow an attacker to spoof the identity of another user with malformed SSL certificates. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11145; scriptversion"1.49"; scriptcvsdate"Date: 2018/11/15 20:50:29"...

7.5CVSS5.5AI score0.1934EPSS
Exploits1References3
securityvulns
securityvulns
added 2002/09/05 12:0 a.m.64 views

Security Bulletin MS02-050: Certificate Validation Flaw Could Enable Identity Spoofing (Q328145)

---------------------------------------------------------------------- Title: Certificate Validation Flaw Could Enable Identity Spoofing Q328145 Date: September 04, 2002 Software: Microsoft Windows, Microsoft Office for Mac, Microsoft Internet Explorer for Mac, or Microsoft Outlook Express for...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2002/08/20 12:0 a.m.51 views

Insufficient Verification of Client Certificates in IIS 5.0 pre sp3

---------------------------------------------------------------------------- ------- Sentor Torparfar Advisory 001 Title: Insufficient Verification of Client Certificates in IIS 5.0 pre sp3 Date: August 16, 2002 Author: Johan Persson [email protected]...

1.2AI score
Exploits0
securityvulns
securityvulns
added 2001/12/25 12:0 a.m.44 views

Проблема с сертификатами в Internet Explorer (certificates spoofing)

Не проверяется правильность сертификата для элементов ключенных внутрь страницы...

0.8AI score
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2001/09/18 4:0 a.m.24 views

CVE-2001-0338

Internet Explorer 5.5 and earlier does not properly validate digital certificates when Certificate Revocation List CRL checking is enabled, which could allow remote attackers to spoof trusted web sites, aka the "Server certificate validation vulnerability."...

6.6AI score0.05321EPSS
Exploits0References4
CERT
CERT
added 2001/08/10 12:0 a.m.19 views

Netscape fails to revalidate certificates if a user has previously acknowledged a certificate to be non-matching

Overview A flaw exists in Netscape Navigator that could allow an attacker to masquerade as a legitimate web site if the attacker can compromise the validity of certain DNS information. This is different from the problem reported in CERT Advisory CA-2000-05, but it has a similar impact. This...

5CVSS5.9AI score0.01294EPSS
Exploits0References1
NVD
NVD
added 2001/06/27 4:0 a.m.19 views

CVE-2001-0338

Internet Explorer 5.5 and earlier does not properly validate digital certificates when Certificate Revocation List CRL checking is enabled, which could allow remote attackers to spoof trusted web sites, aka the "Server certificate validation vulnerability."...

5.1CVSS6.6AI score0.05321EPSS
Exploits0References4
securityvulns
securityvulns
added 2001/05/17 12:0 a.m.72 views

Security Bulletin MS01-027

---------------------------------------------------------------------- Title: Flaws in Web Server Certificate Validation Could Enable Spoofing Date: 16 May 2001 Software: Internet Explorer Impact: Spoofing of trusted web site Bulletin: MS01-027 Microsoft encourages customers to review the...

0.4AI score
Exploits0
CERT
CERT
added 2001/05/17 12:0 a.m.37 views

Internet Explorer incorrectly validates certificates when CRL checking is enabled

Overview Microsoft Internet Explorer IE fails to properly validate certificates when CRL checking is enabled. As a result, sensitive information may be exposed. Description Digital certificates are small documents used to authenticate and encrypt information transmitted over the Internet. One ver...

5.1CVSS5.8AI score0.05321EPSS
Exploits0References8
Cvelist
Cvelist
added 2000/10/13 4:0 a.m.24 views

CVE-2000-0519

Internet Explorer 4.x and 5.x does not properly re-validate an SSL certificate if the user establishes a new SSL session with the same server during the same Internet Explorer session, aka one of two different "SSL Certificate Validation" vulnerabilities...

6.7AI score0.04835EPSS
Exploits0References5
Cvelist
Cvelist
added 2000/10/13 4:0 a.m.23 views

CVE-2000-0518

Internet Explorer 4.x and 5.x does not properly verify all contents of an SSL certificate if a connection is made to the server via an image or a frame, aka one of two different "SSL Certificate Validation" vulnerabilities...

6.6AI score0.04835EPSS
Exploits0References5
Cvelist
Cvelist
added 2000/07/12 4:0 a.m.27 views

CVE-2000-0406

Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own malicious server, aka the "Acros-Suencksen SSL" vulnerability...

6.4AI score0.01025EPSS
Exploits0References4
NVD
NVD
added 2000/06/05 4:0 a.m.21 views

CVE-2000-0518

Internet Explorer 4.x and 5.x does not properly verify all contents of an SSL certificate if a connection is made to the server via an image or a frame, aka one of two different "SSL Certificate Validation" vulnerabilities...

2.6CVSS6.6AI score0.04835EPSS
Exploits0References5
securityvulns
securityvulns
added 2000/05/27 12:0 a.m.29 views

Advisory CA-2000-08

CERT Advisory CA-2000-08 Inconsistent Warning Messages in Netscape Navigator Original release date: May 26, 2000 Last Revised: -- Source: CERT/CC A complete revision history is at the end of this file. Systems Affected Systems running Netscape Navigator, up to and including Navigator 4.73, withou...

6.6AI score
Exploits0
securityvulns
securityvulns
added 2000/05/27 12:0 a.m.45 views

new vulnerability in Netscape effectively disables SSL server auth

-----BEGIN PGP SIGNED MESSAGE----- Introduction ============ This vulnerability defeats SSL server authentication in Netscape 4.73 and earlier versions. This is a new vulnerability unrelated to CERT advisory 2000-5. However, it has a similar devastating effect: destroying SSL server authenticatio...

6.7AI score
Exploits0
NVD
NVD
added 2000/05/10 4:0 a.m.22 views

CVE-2000-0406

Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own malicious server, aka the "Acros-Suencksen SSL" vulnerability...

2.6CVSS6.4AI score0.01025EPSS
Exploits0References4
Rows per page
Query Builder