CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2867 matches found

OpenVAS•added 2009/09/09 12:0 a.m.•31 views

RedHat Security Advisory RHSA-2009:1287

The remote host is missing updates announced in advisory RHSA-2009:1287. OpenSSH is OpenBSD's SSH Secure Shell protocol implementation. These packages include the core files necessary for both the OpenSSH client and server. A flaw was found in the SSH protocol. An attacker able to perform a...

2.6CVSS0.1AI score0.15395EPSS

Exploits1References2

Oracle linux•added 2009/09/08 12:0 a.m.•42 views

cman security, bug fix, and enhancement update

2.0.115-1 - RSA II fencing agent has been fixed. - Resolves: rhbz493802 2.0.114-1 - local variable 'verbosefilename' referenced before assignment has been fixed - RSA II fencing agent has been fixed. - Resolves: rhbz493802 rhbz514758 2.0.113-1 - Limitations with 2-node fencescsi are now properly...

6.9CVSS7AI score0.0039EPSS

Exploits0

RedHat Linux•added 2009/09/02 8:0 a.m.•3 views

OpenSSH: Plaintext Recovery Attack against CBC ciphers

Error handling in the SSH protocol in 1 SSH Tectia Client and Server and Connector 4.0 through 4.4.11, 5.0 through 5.2.4, and 5.3 through 5.3.8; Client and Server and ConnectSecure 6.0 through 6.0.4; Server for Linux on IBM System z 6.0.4; Server for IBM z/OS 5.5.1 and earlier, 6.0.0, and 6.0.1;...

2.6CVSS6.8AI score0.15395EPSS

Exploits1References4

myhack58•added 2009/08/28 12:0 a.m.•13 views

Detailed description of SSL and TLS Web Security penetration testing-vulnerability warning-the black bar safety net

If the Web Service of the SSL and TLS Protocol security problem, the consequences will be how? Obviously, in this case the attacker can have all your security information, including user name, passwords, credit card, Bank information...... All in all. This article will give the reader a detailed...

6.9AI score

Exploits0

Oracle linux•added 2009/07/30 12:0 a.m.•61 views

nspr and nss security and bug fix update

nspr: 4.7.4-1.el53.1 - create z-stream version 4.7.4-1 - Update to NSPR 4.7.4 nss: 3.12.3.99.3-1.el53.2 - adjust ssl cipher count constant bug 505650 3.12.3.99.3-1.el53.1 - create z-stream version 3.12.3.99.3-1 - updated to NSS3124FIPS1WITHCKBI175 3.12.3-5 - updated patch to seckey 3.12.3-4 - add...

9.3CVSS2.5AI score0.05741EPSS

Exploits5

Oracle linux•added 2009/07/21 12:0 a.m.•59 views

nspr and nss security, bug fix, and enhancement update

nspr: 4.7.4-1.el53.1 - create z-stream version 4.7.4-1 - Update to NSPR 4.7.4 nss: 3.12.3.99.3-1.0.1.el53.2 - Update clean.gif in the nss-3.12.3.99.3-stripped.tar.bz2 tarball 3.12.3.99.3-1.el53.2 - adjust ssl cipher count constant bug 505650 3.12.3.99.3-1.el53.1 - create z-stream version...

9.3CVSS2.6AI score0.05741EPSS

Exploits5

Fedora•added 2009/07/19 10:38 a.m.•16 views

[SECURITY] Fedora 10 Update: perl-IO-Socket-SSL-1.26-1.fc10

This module is a true drop-in replacement for IO::Socket::INET that uses SSL to encrypt data before it is transferred to a remote server or client. IO::Socket::SSL supports all the extra features that one needs to write a full-featured SSL client or server application: multiple SSL contexts, ciph...

2.4AI score

Exploits0

ThreatPost•added 2009/07/02 5:44 p.m.•13 views

New AES Attack, 200-Year-Old Cipher Key Big Week in Crypto

It’s been quite a week in the world of cryptography. For a field in which advancements are measured in the smallest of terms and major breakthroughs can take decades, the three big news stories involving cryptography in the last few days comprise an epochal event. Perhaps the most interesting of...

7.2AI score

Exploits0References2

securityvulns•added 2009/04/24 12:0 a.m.•108 views

Formshield Captcha - Older Version vulnerable to replay attacks

Replay attack on CAPTCHA Libraries Summary A CAPTCHA implementation that we tested were found to be vulnerable to replay attacks. The attack is explained in detail for Formshield – A popular DOT NET CAPTCHA implementation. NOTE: We discovered this during a Black Box engagement with one of our...

0.1AI score

Exploits0

OpenVAS•added 2009/04/23 12:0 a.m.•86 views

OpenSSH CBC Mode Information Disclosure Vulnerability

The host is installed with OpenSSH and is prone to information disclosure vulnerability. OpenVAS Vulnerability Test $Id: openssh32319remote.nasl 5002 2017-01-13 10:17:13Z teissa $ OpenSSH CBC Mode Information Disclosure Vulnerability Authors: Michael Meyer Copyright: Copyright c 2009 Greenbone...

2.6CVSS7AI score0.15395EPSS

Exploits1References1

OpenVAS•added 2009/04/23 12:0 a.m.•88 views

OpenSSH CBC Mode Information Disclosure Vulnerability

OpenSSH is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openbsd:openssh";...

3.7CVSS5.7AI score0.15395EPSS

Exploits1References1

OpenVAS•added 2009/04/09 12:0 a.m.•13 views

Mandriva Update for openssl MDKA-2007:028 (openssl)

Check for the Version of openssl OpenVAS Vulnerability Test Mandriva Update for openssl MDKA-2007:028 openssl Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

0.2AI score

Exploits0References2

OpenVAS•added 2009/04/09 12:0 a.m.•6 views

Mandriva Update for openssl MDKA-2007:028 (openssl)

0.2AI score

Exploits0References2

OpenVAS•added 2009/04/09 12:0 a.m.•28 views

Mandriva Update for openssl MDVSA-2008:107 (openssl)

Check for the Version of openssl OpenVAS Vulnerability Test Mandriva Update for openssl MDVSA-2008:107 openssl Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

4.3CVSS0.05EPSS

Exploits1References2