Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.20 views

openSUSE Security Update : kdelibs4 (openSUSE-SU-2011:0281-1)

KSSL did not properly verify the host name of a certificate if the certificate was issued for an IP address CVE-2011-1094. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update kdelibs4-4225. The te...

4.3CVSS5.3AI score0.00999EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.20 views

Oracle Linux 6 : kdelibs (ELSA-2011-0464)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0464 advisory. - rebase the fix for CVE-2011-1094 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

4.3CVSS5.6AI score0.02673EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2011/06/13 12:0 a.m.31 views

Ubuntu 9.10 / 10.04 LTS / 10.10 : kde4libs vulnerabilities (USN-1110-1)

It was discovered that KDE KSSL did not properly verify X.509 certificates when the certificate was issued for an IP address. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications. CVE-2011-1094 Tim Brown discovered th...

4.3CVSS5.1AI score0.02673EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2011/05/10 12:0 a.m.31 views

Ubuntu Update for kde4libs USN-1110-1

Ubuntu Update for Linux kernel vulnerabilities USN-1110-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN11101.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for kde4libs USN-1110-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net Thi...

4.3CVSS0.02673EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2011/05/05 12:0 a.m.27 views

openSUSE Security Update : kdelibs4 (openSUSE-SU-2011:0280-1)

KSSL did not properly verify the host name of a certificate if the certificate was issued for an IP address CVE-2011-1094. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update kdelibs4-4216. The te...

4.3CVSS5.3AI score0.00999EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2011/04/22 12:0 a.m.33 views

RHEL 6 : kdelibs (RHSA-2011:0464)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0464 advisory. The kdelibs packages provide libraries for the K Desktop Environment KDE. A cross-site scripting XSS flaw was found in the way KHTML, the HT...

4.3CVSS5.3AI score0.02673EPSS
Exploits2References7
Oracle linux
Oracle linux
added 2011/04/21 12:0 a.m.45 views

kdelibs security update

6:4.3.4-11.2 - rebase the fix for CVE-2011-1094 6:4.3.4-11.1 - fixes CVE-2011-1094, CVE-2011-1168...

4.3CVSS1.2AI score0.02673EPSS
Exploits2
securityvulns
securityvulns
added 2011/04/19 12:0 a.m.158 views

[USN-1110-1] KDE-Libs vulnerabilities

========================================================================== Ubuntu Security Notice USN-1110-1 April 14, 2011 kde4libs vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

4.3CVSS0.5AI score0.02673EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2011/04/04 12:0 a.m.29 views

SuSE 11.1 Security Update : kdelibs4 (SAT Patch Number 4217)

KSSL did not properly verify the host name of a certificate if the certificate was issued for an IP address CVE-2011-1094. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update informatio...

4.3CVSS5.3AI score0.00999EPSS
Exploits0References4
NVD
NVD
added 2011/03/16 10:55 p.m.27 views

CVE-2011-1094

kio/kio/tcpslavebase.cpp in KDE KSSL in kdelibs before 4.6.1 does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a certificate issued by a legitimate...

4.3CVSS5.4AI score0.00999EPSS
Exploits0References10
OSV
OSV
added 2011/03/16 10:55 p.m.5 views

CVE-2011-1094

kio/kio/tcpslavebase.cpp in KDE KSSL in kdelibs before 4.6.1 does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a certificate issued by a legitimate...

5.7AI score
Exploits0References10
CVE
CVE
added 2011/03/16 10:0 p.m.77 views

CVE-2011-1094

CVE-2011-1094 affects KDE KDE-kdelibs KSSL prior to version 4.6.1, where hostname verification is not properly performed against the certificate’s subject/subjectAltName. This enables MITM spoofing of SSL servers with certificates issued by legitimate CAs for IP addresses. OpenVAS/OSS advisories ...

4.3CVSS5.6AI score0.00999EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder