4 matches found
CVE-2015-2434
The CVE-2015-2434 entry concerns Microsoft XML Core Services 3.0 and 5.0 that support SSL 2.0, which the sources describe as enabling a network-based decryption attack (man-in-the-middle) and thus exposing cryptographic protections. The connected documents corroborate that this vulnerability stem...
Microsoft Windows XML Core Services Information Disclosure Vulnerability (3080129)
This host is missing an important security update according to Microsoft Bulletin MS15-084. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
MS15-084: Vulnerabilities in XML Core Services Could Allow Information Disclosure (3080129)
The remote Windows host contains a version of Microsoft XML Core Services MSXML that is affected by multiple information disclosure vulnerabilities : - An information disclosure vulnerability exists in XML Core Services MSXML due to the use of Secure Sockets Layer SSL 2.0. A man-in-the-middle...
Microsoft XML Core Services CVE-2015-2434 Man in the Middle Information Disclosure Vulnerability
Description Microsoft XML Core Services is prone to an information-disclosure vulnerability. Attackers can exploit this issue to disclose potentially sensitive information through man-in-the-middle attacks. Technologies Affected Microsoft Office 2007 SP2 Microsoft Windows 7 for 32-bit Systems SP1...