11 matches found
EUVD-2015-3326
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2015-3277
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The modnss module before 1.0.11 in Fedora allows remote attackers to obtain cipher lists due to incorrect parsing of multi-keyword cipherstring. CVE-2015-3277...
Linux Distros Unpatched Vulnerability : CVE-2015-3278
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allo...
RHEL 6 : openldap (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openldap: incorrect multi-keyword mode cipherstring parsing CVE-2015-3276 -...
K17321122: Nss compat ossl vulnerability CVE-2015-3278
Security Advisory Description The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allows attackers to have unspecified impact via unknown vectors. CVE-2015-3278 Impact There is no impact; F5...
SUSE CVE-2015-3278
The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allows attackers to have unspecified impact via unknown vectors...
Unspecified vulnerability in nss_compat_ossl
nsscompatossl is a compatibility conversion program that converts OpenSSL to an NSS cryptographic library. A security vulnerability exists in the cipherstring parsing code in nsscompatossl, which stems from the program failing to match the corresponding cipherstring in multiple keyword patterns. ...
Code injection
The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allows attackers to have unspecified impact via unknown vectors...
CVE-2015-3278
The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allows attackers to have unspecified impact via unknown vectors...
CVE-2015-3278
The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allows attackers to have unspecified impact via unknown vectors...
CVE-2015-3278
CVE-2015-3278 involves the cipherstring parsing code in the NSS compatibility layer, specifically the nss_compat_ossl component, which in multi-keyword mode fails to match the expected cipher set for a given cipher combination. The underlying issue is a mismatch in how cipherstrings are parsed, e...