12 matches found
Gentoo Security Advisory GLSA 201101-06 (IO::Socket::SSL)
The remote host is missing updates announced in advisory GLSA 201101-06. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
GLSA-201101-06 : IO::Socket::SSL: Certificate validation error
The remote host is affected by the vulnerability described in GLSA-201101-06 IO::Socket::SSL: Certificate validation error The vendor reported that IO::Socket::SSL does not properly handle Common Name CN fields. Impact : A remote attacker might employ a specially crafted certificate to conduct...
Mandriva Security Advisory MDVSA-2009:252-1 (perl-IO-Socket-SSL)
The remote host is missing an update to perl-IO-Socket-SSL announced via advisory MDVSA-2009:252-1. OpenVAS Vulnerability Test $Id: mdksa20092521.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:252-1 perl-IO-Socket-SSL Authors: Thomas Reinke Copyrigh...
SLES11: Security update for perl-IO-Socket-SSL
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: perl-IO-Socket-SSL More details may also be found by searching for the SuSE Enterprise Server 11 patch database linked in the references...
[ MDVSA-2009:178 ] perl-IO-Socket-SSL
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:178 http://www.mandriva.com/security/ Package : perl-IO-Socket-SSL Date : September 30, 2009 Affected: 2009.0, Enterprise Server 5.0 Problem Description: A vulnerability was discovered and corrected in...
MDVSA-2009:178 : perl-IO-Socket-SSL
A vulnerability was discovered and corrected in perl-IO-Socket-SSL: The verifyhostnameofcert function in the certificate checking feature in IO-Socket-SSL IO::Socket::SSL 1.14 through 1.25 only matches the prefix of a hostname when no wildcard is used, which allows remote attackers to bypass the...
SuSE 11 Security Update : perl-IO-Socket-SSL (SAT Patch Number 1265)
This update of perl-IO-Socket-SSL improves the hostname checking of the SSL certificate. CVE-2009-3024 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell,...
openSUSE Security Update : perl-IO-Socket-SSL (perl-IO-Socket-SSL-1264)
This update of perl-IO-Socket-SSL improves the hostname checking of the SSL certificate. CVE-2009-3024 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update perl-IO-Socket-SSL-1264. The text...
CVE-2009-3024
The verifyhostnameofcert function in the certificate checking feature in IO-Socket-SSL IO::Socket::SSL 1.14 through 1.25 only matches the prefix of a hostname when no wildcard is used, which allows remote attackers to bypass the hostname check for a certificate...
CVE-2009-3024
CVE-2009-3024 affects the Perl IO::Socket::SSL module (versions 1.14–1.25). The verify_hostname_of_cert() function only matches the hostname prefix when no wildcard is used, allowing remote attackers to bypass hostname verification. Gentoo GLSA 201101-06 and related OpenVAS entries indicate vulne...
Fedora Core 10 FEDORA-2009-7544 (perl-IO-Socket-SSL)
The remote host is missing an update to perl-IO-Socket-SSL announced via advisory FEDORA-2009-7544. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...
Fedora Core 11 FEDORA-2009-7435 (perl-IO-Socket-SSL)
The remote host is missing an update to perl-IO-Socket-SSL announced via advisory FEDORA-2009-7435. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...