2 matches found
CVE-2008-7128
The sslparseclientkeyexchange function in XySSL before 0.9 does not protect against certain Bleichenbacher attacks using chosen ciphertext, which allows remote attackers to recover keys via unspecified vectors...
CVE-2008-7128
The CVE-2008-7128 entry concerns the ssl_parse_client_key_exchange function in XySSL prior to 0.9, which does not protect against certain Bleichenbacher-style chosen-ciphertext attacks. The vulnerability allows remote attackers to recover keys via unspecified vectors. Documented impact is partial...