12 matches found
Linux Distros Unpatched Vulnerability : CVE-2010-4334
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IO::Socket::SSL module 1.35 for Perl, when verifymode is not VERIFYNONE, fails open to VERIFYNONE instead of throwing an error when a cafile/capath cannot b...
RHEL 6 : perl-io-socket-ssl (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - perl-IO-Socket-SSL: ignores user request for peer verification CVE-2010-4334 Note that Nessus has not tested for th...
Mandriva Update for perl-IO-Socket-SSL MDVSA-2011:092 (perl-IO-Socket-SSL)
Check for the Version of perl-IO-Socket-SSL OpenVAS Vulnerability Test Mandriva Update for perl-IO-Socket-SSL MDVSA-2011:092 perl-IO-Socket-SSL Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...
Mandriva Linux Security Advisory : perl-IO-Socket-SSL (MDVSA-2011:092)
A vulnerability has been found and corrected in perl-IO-Socket-SSL : IO::Socket::SSL Perl module 1.35, when verifymode is not VERIFYNONE, fails open to VERIFYNONE instead of throwing an error when a cafile/capath cannot be verified, which allows remote attackers to bypass intended certificate...
CVE-2010-4334
The IO::Socket::SSL module 1.35 for Perl, when verifymode is not VERIFYNONE, fails open to VERIFYNONE instead of throwing an error when a cafile/capath cannot be verified, which allows remote attackers to bypass intended certificate restrictions...
CVE-2010-4334
The IO::Socket::SSL module 1.35 for Perl, when verifymode is not VERIFYNONE, fails open to VERIFYNONE instead of throwing an error when a cafile/capath cannot be verified, which allows remote attackers to bypass intended certificate restrictions...
CVE-2010-4334
CVE-2010-4334 affects the Perl IO::Socket::SSL module (v1.35). When verify_mode is not VERIFY_NONE, a ca_file/ca_path that cannot be verified is allowed to open as VERIFY_NONE instead of failing, potentially bypassing certificate restrictions. Impact described in multiple sources (NVD, OSV, vendo...
CVE-2010-4334
The IO::Socket::SSL module 1.35 for Perl, when verifymode is not VERIFYNONE, fails open to VERIFYNONE instead of throwing an error when a cafile/capath cannot be verified, which allows remote attackers to bypass intended certificate restrictions...
Fedora Update for perl-IO-Socket-SSL FEDORA-2010-19058
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for perl-IO-Socket-SSL FEDORA-2010-19054
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CVE-2010-4501
CVE-2010-4334 affects the IO::Socket::SSL Perl module: version 1.35, when verify_mode is not VERIFY_NONE, can open to VERIFY_NONE without verifying CA files/paths, allowing bypass of certificate restrictions. This vulnerability is referenced across multiple ecosystems (NVD OSV/ENISA/Nessus/OpenVA...
Perl IO::Socket::SSL 'verify_mode' Security Bypass Vulnerability
The IO::Socket::SSL module for Perl is prone to a security- bypass vulnerability. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...