Lucene search
K

12 matches found

OpenVAS
OpenVAS
added 2011/03/09 12:0 a.m.19 views

Gentoo Security Advisory GLSA 201101-06 (IO::Socket::SSL)

The remote host is missing updates announced in advisory GLSA 201101-06. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

4.3CVSS7.6AI score0.00996EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2011/01/17 12:0 a.m.28 views

GLSA-201101-06 : IO::Socket::SSL: Certificate validation error

The remote host is affected by the vulnerability described in GLSA-201101-06 IO::Socket::SSL: Certificate validation error The vendor reported that IO::Socket::SSL does not properly handle Common Name CN fields. Impact : A remote attacker might employ a specially crafted certificate to conduct...

4.3CVSS5.5AI score0.00996EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/12/10 12:0 a.m.27 views

Mandriva Security Advisory MDVSA-2009:252-1 (perl-IO-Socket-SSL)

The remote host is missing an update to perl-IO-Socket-SSL announced via advisory MDVSA-2009:252-1. OpenVAS Vulnerability Test $Id: mdksa20092521.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:252-1 perl-IO-Socket-SSL Authors: Thomas Reinke Copyrigh...

4.3CVSS0.6AI score0.00996EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/10/11 12:0 a.m.48 views

SLES11: Security update for perl-IO-Socket-SSL

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: perl-IO-Socket-SSL More details may also be found by searching for the SuSE Enterprise Server 11 patch database linked in the references...

4.3CVSS7.6AI score0.00996EPSS
Exploits0References2
securityvulns
securityvulns
added 2009/10/04 12:0 a.m.53 views

[ MDVSA-2009:178 ] perl-IO-Socket-SSL

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:178 http://www.mandriva.com/security/ Package : perl-IO-Socket-SSL Date : September 30, 2009 Affected: 2009.0, Enterprise Server 5.0 Problem Description: A vulnerability was discovered and corrected in...

4.3CVSS7.5AI score0.00996EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/10/01 12:0 a.m.31 views

MDVSA-2009:178 : perl-IO-Socket-SSL

A vulnerability was discovered and corrected in perl-IO-Socket-SSL: The verifyhostnameofcert function in the certificate checking feature in IO-Socket-SSL IO::Socket::SSL 1.14 through 1.25 only matches the prefix of a hostname when no wildcard is used, which allows remote attackers to bypass the...

4.3CVSS6.8AI score0.00996EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.30 views

SuSE 11 Security Update : perl-IO-Socket-SSL (SAT Patch Number 1265)

This update of perl-IO-Socket-SSL improves the hostname checking of the SSL certificate. CVE-2009-3024 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell,...

4.3CVSS5.2AI score0.00996EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2009/09/09 12:0 a.m.34 views

openSUSE Security Update : perl-IO-Socket-SSL (perl-IO-Socket-SSL-1264)

This update of perl-IO-Socket-SSL improves the hostname checking of the SSL certificate. CVE-2009-3024 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update perl-IO-Socket-SSL-1264. The text...

4.3CVSS5.2AI score0.00996EPSS
Exploits0References2
OSV
OSV
added 2009/08/31 8:30 p.m.6 views

CVE-2009-3024

The verifyhostnameofcert function in the certificate checking feature in IO-Socket-SSL IO::Socket::SSL 1.14 through 1.25 only matches the prefix of a hostname when no wildcard is used, which allows remote attackers to bypass the hostname check for a certificate...

6.8AI score
Exploits0References8
CVE
CVE
added 2009/08/31 8:0 p.m.67 views

CVE-2009-3024

CVE-2009-3024 affects the Perl IO::Socket::SSL module (versions 1.14–1.25). The verify_hostname_of_cert() function only matches the hostname prefix when no wildcard is used, allowing remote attackers to bypass hostname verification. Gentoo GLSA 201101-06 and related OpenVAS entries indicate vulne...

4.3CVSS7.3AI score0.00996EPSS
Exploits0References8Affected Software1
OpenVAS
OpenVAS
added 2009/07/29 12:0 a.m.17 views

Fedora Core 10 FEDORA-2009-7544 (perl-IO-Socket-SSL)

The remote host is missing an update to perl-IO-Socket-SSL announced via advisory FEDORA-2009-7544. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...

4.3CVSS6.4AI score0.00996EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2009/07/29 12:0 a.m.23 views

Fedora Core 11 FEDORA-2009-7435 (perl-IO-Socket-SSL)

The remote host is missing an update to perl-IO-Socket-SSL announced via advisory FEDORA-2009-7435. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...

4.3CVSS6.4AI score0.00996EPSS
Exploits0References3
Rows per page
Query Builder