30 matches found
Security Bulletin: Vulnerabilities in OpenSSL (CVE-1015-1793)
Question Security Bulletin: Vulnerabilities in OpenSSL CVE-1015-1793 "Business Unit":"code":"BU059","label":"IBM Software w/o TPS","Product":"code":"SS8NDZ","label":"IBM Aspera","Component":"","Platform":"code":"PF025","label":"Platform Independent","Version":"All Versions","Edition":"","Line of...
Security Bulletin: Securing your products against OpenSSL and TLS vulnerabilities
Question Security Bulletin: Securing your products against OpenSSL and TLS vulnerabilities "Business Unit":"code":"BU059","label":"IBM Software w/o TPS","Product":"code":"SS8NDZ","label":"IBM Aspera","Component":"","Platform":"code":"PF025","label":"Platform Independent","Version":"All...
Security Bulletin: Vulnerabilities in OpenSSL affect IBM InfoSphere Master Data Management ( CVE-2015-1793)
Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project and affect IBM InfoSphere Master Data Management . This includes the alternate chains certificate forgery vulnerability CVE-2015-1793. IBM InfoSphere Master Data Management has addressed the applicable CVEs. Vulnerability Detai...
Security Bulletin: Vulnerabilities in OpenSSL including Logjam affect IBM GPFS V3.5 for Windows (CVE-2015-4000, CVE-2015-1793, CVE-2014-8176, CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791, CVE-2015-1792)
Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project and affect IBM GPFS V3.5 . This includes the Logjam Attack on TLS connections using the Diffie-Hellman DH key exchange protocol CVE-2015-4000. This also includes the alternate chains certificate forgery vulnerability...
Security Bulletin: Vulnerabilities in OpenSSL including Logjam affect Rational Software Architect for WebSphere Software (CVE-2015-4000, CVE-2015-1793)
Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project and affect Rational Software Architect for WebSphere Software. This includes the Logjam Attack on TLS connections using the Diffie-Hellman DH key exchange protocol CVE-2015-4000. This also includes the alternate chains...
Security Bulletin: Vulnerability in OpenSSL affects IBM® SDK for Node.js™ (CVE-2015-1793)
Summary OpenSSL alternate chains certificate forgery vulnerability CVE-2015-1793 disclosed by the OpenSSL Project on July 9 2015. IBM SDK for Node.js has addressed this CVE. Vulnerability Details CVEID: CVE-2015-1793 DESCRIPTION: OpenSSL could allow a remote attacker to bypass security...
Security Bulletin: Vulnerability in OpenSSL affects IBM® SDK for Node.js™ in IBM Bluemix (CVE-2015-1793)
Summary OpenSSL alternate chains certificate forgery vulnerability CVE-2015-1793 disclosed by the OpenSSL Project on July 9 2015. IBM SDK for Node.js in IBM Bluemix has addressed this CVE. Vulnerability Details CVEID: CVE-2015-1793 DESCRIPTION: OpenSSL could allow a remote attacker to bypass...
Security Bulletin: Vulnerabilities in OpenSSL including Logjam affect the Cordova platform packaged with Rational Application Developer affecting Rational Developer for i and Rational Developer for AIX and Linux
Summary Portions of IBM Rational Application Developer for WebSphere Software are shipped as a component of Rational Developer for i RPG and COBOL + Modernization Tools, Java and EGL editions, and Rational Developer for AIX and Linux. OpenSSL vulnerabilities were disclosed by the OpenSSL Project...
Security Bulletin: Vulnerabilities in OpenSSL affect Rational Automaiton Framework (CVE-2015-1793)
Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project and affect Rational Automation Framework. This includes the alternate chains certificate forgery vulnerability CVE-2015-1793. Rational Automation Framework has addressed the applicable CVEs. Vulnerability Details CVEID:...
Security Bulletin: Vulnerability in OpenSSL affects Rational Tau (CVE-2015-1793)
Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project and affect Rational Tau. This includes the alternate chains certificate forgery vulnerability CVE-2015-1793. Rational Tau has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2015-1793 DESCRIPTION: OpenSSL could...
CVE-2015-1793
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/server/opensslaltchainsforgerymitmproxy.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:37+00:00...
Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (January 2016 CPU)
The version of Oracle Enterprise Manager Cloud Control installed on the remote host is affected by multiple unspecified vulnerabilities in the following subcomponents of the Enterprise Manager Base Platform component : - Agent Next Gen - Discovery Framework - Loader Service - UI Framework Note th...
SUSE SLED11 / SLES11 Security Update : mysql (SUSE-SU-2015:2303-1)
The mysql package was updated to version 5.5.46 to fixs several security and non security issues. - bnc951391: update to version 5.5.46 - changes: http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5- 46.html - fixed CVEs: CVE-2015-1793, CVE-2015-0286, CVE-2015-0288, CVE-2015-1789,...
openSUSE Security Update : mysql (openSUSE-2015-889) (BACKRONYM)
MySQL was updated to 5.6.27 to fix security issues and bugs. The following vulnerabilities were fixed as part of the upstream release boo951391: CVE-2015-1793, CVE-2015-0286, CVE-2015-0288, CVE-2015-1789, CVE-2015-4730, CVE-2015-4766, CVE-2015-4792, CVE-2015-4800, CVE-2015-4802, CVE-2015-4815,...
openSUSE: Security Advisory for Security (openSUSE-SU-2015:2243-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update to MySQL 5.6.27 (important)
MySQL was updated to 5.6.27 to fix security issues and bugs. The following vulnerabilities were fixed as part of the upstream release boo951391: CVE-2015-1793, CVE-2015-0286, CVE-2015-0288, CVE-2015-1789, CVE-2015-4730, CVE-2015-4766, CVE-2015-4792, CVE-2015-4800, CVE-2015-4802, CVE-2015-4815,...
Security Advisory - MITM Vulnerability in the OpenSSL Module of Huawei eSight Network
During certificate verification, OpenSSL starting from version 1.0.1n and 1.0.2b will attempt to find an alternative certificate chain if the first attempt to build such a chain fails. An error in the implementation of this logic can mean that an attacker could cause certain checks on untrusted...
OpenSSL Alternative Chains Certificate Forgery MITM Proxy
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'openssl' class Metasploit3 'OpenSSL Alternative Chains Certificate Forgery MITM Proxy', 'Description' = %q This module exploits a logic error ...
OpenSSL-CVE-2 0 1 5-1 7 9 3 vulnerability analysis-vulnerability warning-the black bar safety net
OpenSSL official in 7 on 9 December released a number of CVE-2 0 1 5-1 7 9 3 cross-certificate authentication bypass vulnerability, which mainly affects OpenSSL's 1. 0. 1 and 1. 0. 2 branch. 1.0. 0 and 0. 9. 8 branch is not affected. 3 6 0 security researcher au2o3t of the vulnerability carried o...
Fedora Update for openssl FEDORA-2015-11414
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...