Lucene search
+L

170 matches found

nessus
nessus
added 2014/06/13 12:0 a.m.29 views

openSUSE Security Update : openssl (openSUSE-SU-2012:0547-1)

The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL was vulnerable to a Million Message Attack MMA adaptive chosen ciphertext attack CVE-2012-0884. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

5CVSS8AI score0.13075EPSS
Exploits0References4
nessus
nessus
added 2014/04/16 12:0 a.m.33 views

AIX OpenSSL Advisory : openssl_advisory4.asc

The version of OpenSSL running on the remote host is affected by the following vulnerabilities : - The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data...

7.5CVSS8AI score0.48298EPSS
Exploits8References7
redhat
redhat
added 2012/09/24 3:55 p.m.3 views

openssl: CMS and PKCS#7 Bleichenbacher attack

The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack MMA adaptive chosen ciphertext...

5CVSS7.2AI score0.13075EPSS
Exploits0References5
redhat
redhat
added 2012/09/24 3:53 p.m.4 views

openssl: CMS and PKCS#7 Bleichenbacher attack

The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack MMA adaptive chosen ciphertext...

5CVSS7.2AI score0.13075EPSS
Exploits0References5
redhat
redhat
added 2012/09/24 3:52 p.m.4 views

openssl: CMS and PKCS#7 Bleichenbacher attack

The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack MMA adaptive chosen ciphertext...

5CVSS7.2AI score0.13075EPSS
Exploits0References5
openvas
openvas
added 2012/08/03 12:0 a.m.34 views

Mandriva Update for openssl MDVSA-2012:038 (openssl)

Check for the Version of openssl OpenVAS Vulnerability Test Mandriva Update for openssl MDVSA-2012:038 openssl Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

5CVSS7.9AI score0.13075EPSS
Exploits0References2
aix
aix
added 2012/08/01 9:25 a.m.104 views

Multiple OpenSSL vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Wed Aug 1 09:25:58 CDT 2012 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/openssladvisory4.asc or...

7.5CVSS9.2AI score0.48298EPSS
Exploits8
nessus
nessus
added 2012/05/29 12:0 a.m.53 views

Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : openssl vulnerabilities (USN-1451-1)

Ivan Nestlerode discovered that the Cryptographic Message Syntax CMS and PKCS 7 implementations in OpenSSL returned early if RSA decryption failed. This could allow an attacker to expose sensitive information via a Million Message Attack MMA. CVE-2012-0884 It was discovered that an integer...

6.8CVSS7.8AI score0.28154EPSS
Exploits0References3
openvas
openvas
added 2012/05/25 12:0 a.m.27 views

Ubuntu Update for openssl USN-1451-1

Ubuntu Update for Linux kernel vulnerabilities USN-1451-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN14511.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for openssl USN-1451-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

6.8CVSS0.1AI score0.28154EPSS
Exploits0References2
openvas
openvas
added 2012/05/25 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-1451-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.4AI score0.28154EPSS
Exploits0References2
f5
f5
added 2012/05/22 12:0 a.m.486 views

SOL13598 - OpenSSL vulnerability CVE-2012-0884

The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data using a Million Message Attack MMA adaptive chosen ciphertext...

5CVSS3.9AI score0.13075EPSS
Exploits0References4
openvas
openvas
added 2012/04/30 12:0 a.m.42 views

FreeBSD Ports: openssl

The remote host is missing an update to the system as announced in the referenced advisory. VID 60eb344e-6eb1-11e1-8ad7-00e0815b8da8 OpenVAS Vulnerability Test $ Description: Auto generated from VID 60eb344e-6eb1-11e1-8ad7-00e0815b8da8 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

5CVSS7.7AI score0.13075EPSS
Exploits0
nessus
nessus
added 2012/04/11 12:0 a.m.42 views

SuSE 11.1 Security Update : OpenSSL (SAT Patch Number 6054)

The following security issues have been fixed : - Specially crafted MIME headers could cause openssl's ans1 parser to dereference a NULL pointer leading to a Denial of Service CVE-2006-7250 or fail verfication. CVE-2012-1165 - The implementation of Cryptographic Message Syntax CMS and PKCS 7 in...

5CVSS8AI score0.13075EPSS
Exploits0References11
nessus
nessus
added 2012/04/02 12:0 a.m.39 views

OpenSSL 0.9.8 < 0.9.8u Vulnerability

The version of OpenSSL installed on the remote host is prior to 0.9.8u. It is, therefore, affected by a vulnerability as referenced in the 0.9.8u advisory. - The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict...

5CVSS8AI score0.13075EPSS
Exploits0References3
nessus
nessus
added 2012/04/02 12:0 a.m.57 views

OpenSSL 1.0.0 < 1.0.0h Vulnerability

The version of OpenSSL installed on the remote host is prior to 1.0.0h. It is, therefore, affected by a vulnerability as referenced in the 1.0.0h advisory. - The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict...

5CVSS8AI score0.13075EPSS
Exploits0References3
openvas
openvas
added 2012/03/29 12:0 a.m.35 views

RedHat Update for openssl RHSA-2012:0426-01

Check for the Version of openssl OpenVAS Vulnerability Test RedHat Update for openssl RHSA-2012:0426-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

5CVSS0.16645EPSS
Exploits0References2
redhat
redhat
added 2012/03/27 10:52 p.m.5 views

openssl: CMS and PKCS#7 Bleichenbacher attack

The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack MMA adaptive chosen ciphertext...

5CVSS7.2AI score0.13075EPSS
Exploits0References5
nvd
nvd
added 2012/03/13 3:12 a.m.26 views

CVE-2012-0884

The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack MMA adaptive chosen ciphertext...

5CVSS7.5AI score0.13075EPSS
Exploits0References23
osv
osv
added 2012/03/13 3:12 a.m.3 views

DEBIAN-CVE-2012-0884

The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack MMA adaptive chosen ciphertext...

5CVSS8.2AI score0.13075EPSS
Exploits0References1
osv
osv
added 2012/03/13 3:12 a.m.9 views

CVE-2012-0884

The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack MMA adaptive chosen ciphertext...

7.8AI score
Exploits0References23
Rows per page
Query Builder