Lucene search
+L

2512 matches found

RedHat Linux
RedHat Linux
added 2005/12/19 5:29 p.m.5 views

openssl mitm downgrade attack

The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSLOPMSIESSLV2RSAPADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to u...

5CVSS6.6AI score0.04866EPSS
Exploits0References4
OSV
OSV
added 2005/10/18 9:2 p.m.2 views

DEBIAN-CVE-2005-2969

The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSLOPMSIESSLV2RSAPADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to u...

5CVSS5.7AI score0.04866EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2005/10/18 4:0 a.m.35 views

CVE-2005-2969

The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSLOPMSIESSLV2RSAPADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to u...

5CVSS5.7AI score0.04866EPSS
Exploits0
securityvulns
securityvulns
added 2005/10/14 12:0 a.m.35 views

Mozilla Thunderbird / Mozilla weak authentication downgrade

If SMTP authentication with CRAM-MD5 or TLS hadshake fails mail agent downgrades to plain text authentication, allowing active man-in-the-middle attacks...

2.5AI score
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2005/10/11 3:36 p.m.5 views

openssl mitm downgrade attack

The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSLOPMSIESSLV2RSAPADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to u...

5CVSS6.6AI score0.04866EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/04/21 4:0 a.m.19 views

CVE-2001-1444

The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V Heimdal, does not encrypt authentication and encryption options sent from the server, which allows remote attackers to downgrade authentication and encryption mechanisms via a man-in-the-middle attack...

6.8AI score0.01296EPSS
Exploits1References3
NVD
NVD
added 2001/08/27 4:0 a.m.21 views

CVE-2001-1444

The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V Heimdal, does not encrypt authentication and encryption options sent from the server, which allows remote attackers to downgrade authentication and encryption mechanisms via a man-in-the-middle attack...

7.5CVSS6.8AI score0.01296EPSS
Exploits1References3
securityvulns
securityvulns
added 2001/04/23 12:0 a.m.26 views

Fw: [net-com] Bug in Mirc v5.82

----- Original Message ----- From: Trax [email protected] To: opers-xnet [email protected] Cc: net-com-xnet [email protected] Sent: Sunday, April 22, 2001 1:40 PM Subject: net-com Bug in Mirc v5.82 There is a bug in mirc v5.82 that allows remote control of clients via /quote and /ctcp not the ctcp...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2001/03/26 12:0 a.m.59 views

Raptor 6.5 http vulnerability

Problem Description The Raptor firewall is vulnerability for forwarding http request on other port numbers than 80, if a rule allows http traffic. Redirect rules does not affect this problem. When an extern or internal client, configures itself to use the nearest interface as proxy, it's...

6.9AI score
Exploits0
Positive Technologies
Positive Technologies
added 1970/01/01 12:0 a.m.10 views

PT-2009-6750 · Openssl +3 · Openssl +4

Name of the Vulnerable Software and Affected Versions: OpenSSL versions prior to 0.9.8q OpenSSL versions 1.0.x prior to 1.0.0c openssl-devel-0.9.7a openssl-0.9.7a compat-openssl097g compat-openssl097g-32bit openssl prior to version 1.0.0e Description: The issue involves multiple vulnerabilities i...

10CVSS7.4AI score0.99999EPSS
Exploits36References244
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.17 views

CVE-2026-48747: Mailomat Mailer Webhook Parser Reads the HMAC Algorithm from the Request: Signature Algorithm Downgrade

More info at https://symfony.com/cve-2026-48747...

6.3CVSS5.8AI score0.00197EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.10 views

CVE-2026-48747: Mailomat Mailer Webhook Parser Reads the HMAC Algorithm from the Request: Signature Algorithm Downgrade

More info at https://symfony.com/cve-2026-48747...

6.3CVSS5.8AI score0.00197EPSS
Exploits0Affected Software1
Rows per page
Query Builder