CVE-2013-4784

The CVE-2013-4784 vulnerability affects HP iLO BMC implementations and enables remote attackers to bypass authentication and execute arbitrary IPMI commands by triggering cipher suite 0 (cipher zero) with any password. The issue is a cipher-zero authentication bypass over IPMI, allowing network-a...

CVE-2013-4783

The CVE-2013-4783 entry documents an authentication bypass in Dell iDRAC6/7: iDRAC6 firmware 1.x before 1.92, 2.x, and 3.x before 3.42, and iDRAC7 firmware before 1.23.23, allow remote attackers to bypass authentication and run arbitrary IPMI commands by using cipher suite 0 (cipher zero) with an...

CVE-2013-4782

The Supermicro BMC implementation allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 aka cipher zero and an arbitrary password...

CVE-2013-4782

CVE-2013-4782 affects Supermicro BMC/IPMI: authentication bypass via IPMI 2.0 cipher suite 0 (cipher zero) allows remote execution of arbitrary IPMI commands. Affected component is the BMC’s IPMI implementation; the root cause is cipher-zero authentication bypass. Impact stated across sources inc...

IPMI 2.0 Cipher Zero Authentication Bypass Scanner

This module identifies IPMI 2.0-compatible systems that are vulnerable to an authentication bypass vulnerability through the use of cipher zero. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...

Low: openvpn

Issue Overview: The openvpndecrypt function in crypto.c in OpenVPN 2.3.0 and earlier, when running in UDP mode, allows remote attackers to obtain sensitive information via a timing attack involving an HMAC comparison function that does not run in constant time and a padding oracle attack on the C...

SSL Null Cipher Suites Supported

The remote host supports the use of SSL ciphers that offer no encryption at all. Note: This is considerably easier to exploit if the attacker is on the same physical network. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid66848; scriptversion"1.4";...

CVE-2013-2145

The cpansign verify functionality in the Module::Signature module before 0.72 for Perl allows attackers to bypass the signature check and execute arbitrary code via a SIGNATURE file with a "special unknown cipher" that references an untrusted module in Digest/...

Scientific Linux Security Update : gnutls on SL5.x, SL6.x i386/srpm/x86_64 (20130530)

It was discovered that the fix for the CVE-2013-1619 issue released via SLSA-2013:0588 introduced a regression in the way GnuTLS decrypted TLS/SSL encrypted records when CBC-mode cipher suites were used. A remote attacker could possibly use this flaw to crash a server or client application that...

Important: Red Hat Security Advisory: gnutls security update

Updated gnutls packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

Debian Security Advisory DSA 2697-1 (gnutls26 - out-of-bounds array read)

It was discovered that a malicious client could crash a GNUTLS server and vice versa, by sending TLS records encrypted with a block cipher which contain invalid padding. The oldstable distribution squeeze is not affected because the security fix that introduced this vulnerability was not applied ...

DSA-2697-1 gnutls26 - out-of-bounds array read

Bulletin has no description...

Mandriva Linux Security Advisory : openvpn (MDVSA-2013:167)

Updated openvpn package fixes security vulnerability : OpenVPN 2.3.0 and earlier running in UDP mode are subject to chosen ciphertext injection due to a non-constant-time HMAC comparison function. Plaintext recovery may be possible using a padding oracle attack on the CBC mode cipher implementati...

DEBIAN-CVE-2013-3555

epan/dissectors/packet-gtpv2.c in the GTPv2 dissector in Wireshark 1.8.x before 1.8.7 calls incorrect functions in certain contexts related to ciphers, which allows remote attackers to cause a denial of service application crash via a malformed packet...

UBUNTU-CVE-2013-3555

epan/dissectors/packet-gtpv2.c in the GTPv2 dissector in Wireshark 1.8.x before 1.8.7 calls incorrect functions in certain contexts related to ciphers, which allows remote attackers to cause a denial of service application crash via a malformed packet...

SSL/TLS: CBC padding timing attack (lucky-13)

The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct...

SSL/TLS: CBC padding timing attack (lucky-13)

The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct...

Sysax Multi Server SSH Component NULL Pointer Dereference DOS Vulnerability

The host is running Sysax Multi Server and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gbsysaxmultiserversshdosvuln.nasl 6074 2017-05-05 09:03:14Z teissa $ Sysax Multi Server SSH Component NULL Pointer Dereference DOS Vulnerability Authors: Antu Sanadi Copyright:...

Sysax Multi Server < 6.11 DOS Vulnerability - Active Check

Sysax Multi Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SSL RC4 Cipher Suites Supported (Bar Mitzvah)

The remote host supports the use of RC4 in one or more cipher suites. The RC4 cipher is flawed in its generation of a pseudo-random stream of bytes so that a wide variety of small biases are introduced into the stream, decreasing its randomness. If plaintext is repeatedly encrypted e.g., HTTP...