Lucene search
K

13 matches found

Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.43 views

Oracle Linux 5 : openssl (ELSA-2009-1335)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-1335 advisory. - fix CVE-2009-1386 CVE-2009-1387 DTLS DoS problems 503685, 503688 - fix CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 DTLS DoS problems 501253, 501254,...

5CVSS7.2AI score0.80134EPSS
Exploits20References8
Tenable Nessus
Tenable Nessus
added 2016/10/21 12:0 a.m.106 views

MySQL 5.7.x < 5.7.16 Multiple Vulnerabilities (October 2016 CPU) (SWEET32)

The version of MySQL running on the remote host is 5.7.x prior to 5.7.16. It is, therefore, affected by multiple vulnerabilities : - Multiple integer overflow conditions exist in s3srvr.c, sslsess.c, and t1lib.c due to improper use of pointer arithmetic for heap-buffer boundary checks. An...

10CVSS8AI score0.95707EPSS
Exploits24References20
Oracle linux
Oracle linux
added 2015/01/20 12:0 a.m.76 views

openssl security update

1.0.1e-34.7 - fix CVE-2014-3570 - incorrect computation in BNsqr - fix CVE-2014-3571 - possible crash in dtls1getrecord - fix CVE-2014-3572 - possible downgrade of ECDH ciphersuite to non-PFS state - fix CVE-2014-8275 - various certificate fingerprint issues - fix CVE-2015-0204 - remove support f...

5CVSS3.2AI score0.98685EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/01/13 12:0 a.m.68 views

Ubuntu 14.04 LTS : OpenSSL vulnerabilities (USN-2459-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2459-1 advisory. Pieter Wuille discovered that OpenSSL incorrectly handled Bignum squaring. CVE-2014-3570 Markus Stenberg discovered that OpenSSL incorrectly handled...

5CVSS7.6AI score0.98685EPSS
Exploits0References8
OSV
OSV
added 2015/01/08 12:0 a.m.3 views

UBUNTU-CVE-2015-0206

Memory leak in the dtls1bufferrecord function in d1pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service memory consumption by sending many duplicate records for the next epoch, leading to failure of replay detection...

5CVSS6.8AI score0.59319EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/01/04 12:0 a.m.34 views

OpenSSL < 0.9.8l Multiple Vulnerabilities

According to its banner, the remote server is running a version of OpenSSL that is earlier than 0.9.8l. As such, it may be affected by multiple vulnerabilities : - A remote attacker could crash the server by sending malformed ASN.1 data. This flaw only affects some architectures, Win64 and other...

5.1CVSS7.4AI score0.12746EPSS
Exploits12References9
RedHat Linux
RedHat Linux
added 2009/09/02 8:0 a.m.6 views

OpenSSL: DTLS epoch record buffer memory DoS

The dtls1bufferrecord function in ssl/d1pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service memory consumption via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug."...

5CVSS7.1AI score0.11274EPSS
Exploits1References4
OSV
OSV
added 2009/05/19 7:30 p.m.8 views

CVE-2009-1377

The dtls1bufferrecord function in ssl/d1pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service memory consumption via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug."...

9.1AI score
Exploits0References46
OSV
OSV
added 2009/05/19 7:30 p.m.7 views

CVE-2009-1378

Multiple memory leaks in the dtls1processoutofseqmessage function in ssl/d1both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service memory consumption via DTLS records that 1 are duplicates or 2 have sequence numbers much greater than current sequenc...

9.1AI score
Exploits0References53
UbuntuCve
UbuntuCve
added 2009/05/19 7:30 p.m.35 views

CVE-2009-1378

Multiple memory leaks in the dtls1processoutofseqmessage function in ssl/d1both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service memory consumption via DTLS records that 1 are duplicates or 2 have sequence numbers much greater than current sequenc...

5CVSS6.9AI score0.12746EPSS
Exploits12References2
Debian CVE
Debian CVE
added 2009/05/19 7:0 p.m.35 views

CVE-2009-1378

Multiple memory leaks in the dtls1processoutofseqmessage function in ssl/d1both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service memory consumption via DTLS records that 1 are duplicates or 2 have sequence numbers much greater than current sequenc...

5CVSS6.8AI score0.12746EPSS
Exploits12
Debian CVE
Debian CVE
added 2009/05/19 7:0 p.m.26 views

CVE-2009-1377

The dtls1bufferrecord function in ssl/d1pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service memory consumption via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug."...

5CVSS6.7AI score0.11274EPSS
Exploits1
CVE
CVE
added 2009/05/19 7:0 p.m.137 views

CVE-2009-1378

OpenSSL vulnerability CVE-2009-1378 affects DTLS by leaking memory in dtls1_process_out_of_seq_message (OpenSSL 0.9.8k and earlier). This can allow remote denial of service via DTLS records that are duplicates or with sequence numbers far ahead of the current one. Several vendors/distributions (e...

5CVSS6.7AI score0.12746EPSS
Exploits12References37Affected Software1
Rows per page
Query Builder