Lucene search
K

8698 matches found

OSV
OSV
added 2015/05/21 12:59 a.m.2 views

DEBIAN-CVE-2015-4000

The TLS protocol 1.2 and earlier, when a DHEEXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHEEXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHEEXPORT and then...

3.7CVSS8.7AI score0.9986EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2015/05/21 12:0 a.m.4 views

CVE-2015-4000

The TLS protocol 1.2 and earlier, when a DHEEXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHEEXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHEEXPORT and then...

6.1AI score0.9986EPSS
Exploits1References217
CNVD
CNVD
added 2015/05/21 12:0 a.m.4 views

TLS protocol man-in-the-middle attack vulnerability

TLS Transport Layer Security is a set of protocols used to provide confidentiality and data integrity between two communicating applications. A security vulnerability exists in the TLS protocol version 1.2 and earlier. When the server enabled the DHEEXPORT cipher suite, the program failed to...

4.3CVSS6.6AI score0.9986EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2015/05/21 12:0 a.m.30 views

TLS Export-Grade Key Exchange Detection

Binary data 7168.pasl...

4.3CVSS7.3AI score0.9986EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/05/21 12:0 a.m.228 views

TLS Export-Grade Key Exchange Detection (Client)

Binary data 7169.pasl...

4.3CVSS7.3AI score0.9986EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2015/05/20 7:5 p.m.5 views

JDK: ephemeral RSA keys accepted for non-export SSL/TLS cipher suites (FREAK)

GSKit in IBM Tivoli Directory Server ITDS 6.0 before 6.0.0.73-ISS-ITDS-IF0073, 6.1 before 6.1.0.66-ISS-ITDS-IF0066, 6.2 before 6.2.0.42-ISS-ITDS-IF0042, and 6.3 before 6.3.0.35-ISS-ITDS-IF0035 and IBM Security Directory Server ISDS 6.3.1 before 6.3.1.9-ISS-ISDS-IF0009 does not properly restrict T...

4.3CVSS6.8AI score0.03262EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/05/20 6:36 p.m.2 views

JDK: ephemeral RSA keys accepted for non-export SSL/TLS cipher suites (FREAK)

GSKit in IBM Tivoli Directory Server ITDS 6.0 before 6.0.0.73-ISS-ITDS-IF0073, 6.1 before 6.1.0.66-ISS-ITDS-IF0066, 6.2 before 6.2.0.42-ISS-ITDS-IF0042, and 6.3 before 6.3.0.35-ISS-ITDS-IF0035 and IBM Security Directory Server ISDS 6.3.1 before 6.3.1.9-ISS-ISDS-IF0009 does not properly restrict T...

4.3CVSS6.8AI score0.03262EPSS
Exploits0References4
ThreatPost
ThreatPost
added 2015/05/20 4:26 p.m.13 views

Researchers Wary of Wassenaar Arrangement Proposed Rules

Professional security researchers concerned about proposed changes to the Computer Fraud and Abuse Act CFAA that include stiff penalties for what today is considered legitimate offensive research, are worried about another impending punch to the gut. The Commerce Department’s Bureau of Industry a...

7.4AI score
Exploits0References2
ThreatPost
ThreatPost
added 2015/05/20 7:28 a.m.9 views

New Logjam Attack on Diffie-Hellman Threatens Security of Browsers, VPNs

Researchers have uncovered a flaw in the way that some servers handle the Diffie-Hellman key exchange, a bug that’s somewhat similar to the FREAK attack and threatens the security of many Web and mail servers. The bug affects all of the major browsers and any server that supports export-grade...

6.8AI score
Exploits0References9
The Hacker News
The Hacker News
added 2015/05/20 2:36 a.m.14 views

LogJam — This New Encryption Glitch Puts Internet Users at Risk

After HeartBleed, POODLE and FREAK encryption flaws, a new encryption attack has been emerged over the Internet that allows attackers to read and modify the sensitive data passing through encrypted connections, potentially affecting hundreds of thousands of HTTPS-protected sites, mail servers, an...

5.9AI score
Exploits0
OSV
OSV
added 2015/05/20 12:0 a.m.2 views

UBUNTU-CVE-2015-4000

The TLS protocol 1.2 and earlier, when a DHEEXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHEEXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHEEXPORT and then...

3.7CVSS6.2AI score0.9986EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2015/05/19 12:0 a.m.289 views

Apache Tomcat 8.0.x < 8.0.21 Multiple Vulnerabilities (FREAK)

According to its self-reported version number, the Apache Tomcat server listening on the remote host is 8.0.x prior to 8.0.21. It is, therefore, affected by the following vulnerabilities : - A NULL pointer dereference flaw exists when the SSLv3 option isn't enabled and an SSLv3 ClientHello is...

6.8CVSS7.4AI score0.98685EPSS
Exploits0References20
Patchstack
Patchstack
added 2015/05/15 12:0 a.m.10 views

WordPress Custom Contact Forms Plugin <= 5.1.0.3 - Database Import/Export

This plugin is prone to a database import/export vulnerabilities. Solution Update the plugin...

1.9AI score
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2015/05/13 1:36 p.m.2 views

openssl: only allow ephemeral RSA keys in export ciphersuites (FREAK)

It was discovered that OpenSSL would accept ephemeral RSA keys when using non-export RSA cipher suites. A malicious server could make a TLS/SSL client using OpenSSL use a weaker key exchange method...

4.3CVSS7AI score0.98685EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2015/05/13 1:34 p.m.3 views

JDK: ephemeral RSA keys accepted for non-export SSL/TLS cipher suites (FREAK)

GSKit in IBM Tivoli Directory Server ITDS 6.0 before 6.0.0.73-ISS-ITDS-IF0073, 6.1 before 6.1.0.66-ISS-ITDS-IF0066, 6.2 before 6.2.0.42-ISS-ITDS-IF0042, and 6.3 before 6.3.0.35-ISS-ITDS-IF0035 and IBM Security Directory Server ISDS 6.3.1 before 6.3.1.9-ISS-ISDS-IF0009 does not properly restrict T...

4.3CVSS6.8AI score0.03262EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/05/13 1:33 p.m.5 views

JDK: ephemeral RSA keys accepted for non-export SSL/TLS cipher suites (FREAK)

GSKit in IBM Tivoli Directory Server ITDS 6.0 before 6.0.0.73-ISS-ITDS-IF0073, 6.1 before 6.1.0.66-ISS-ITDS-IF0066, 6.2 before 6.2.0.42-ISS-ITDS-IF0042, and 6.3 before 6.3.0.35-ISS-ITDS-IF0035 and IBM Security Directory Server ISDS 6.3.1 before 6.3.1.9-ISS-ISDS-IF0009 does not properly restrict T...

4.3CVSS6.8AI score0.03262EPSS
Exploits0References4
CNVD
CNVD
added 2015/05/11 12:0 a.m.3 views

Multiple Cross-Site Scripting Vulnerabilities in Pimcore userClassController.php

Pimcore is a purely object-oriented system based on the Zend Framework, written in PHP 5. The exportClassAction and exportCustomLayOutDefinitionAction functions in the Pimcore userClassController.php script fail to properly handle the 'id' GET parameter, allowing remote attackers to exploit...

6.7AI score
Exploits0References1
Kitploit
Kitploit
added 2015/04/26 3:1 p.m.23 views

Packet Sender - The UDP and TCP Network Test Utility

Packet Sender is an open source utility to allow sending and receiving TCP and UDP packets. It is available free no ads / no bundleware for Windows , Mac , and Linux. It can be used for both commercial and personal use license. It's designed to be very easy to use while still providing enough...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2015/04/21 7:19 p.m.12 views

[SECURITY] Fedora 22 Update: drupal7-ctools-1.7-1.fc22

This suite is primarily a set of APIs and tools to improve the developer experience. It also contains a module called the Page Manager whose job is to manage pages. In particular it manages panel pages, but as it grows it will be able to manage far more than just Panels. For the moment, it includ...

0.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2015/04/16 3:39 p.m.3 views

openssl: only allow ephemeral RSA keys in export ciphersuites (FREAK)

It was discovered that OpenSSL would accept ephemeral RSA keys when using non-export RSA cipher suites. A malicious server could make a TLS/SSL client using OpenSSL use a weaker key exchange method...

4.3CVSS6.7AI score0.98685EPSS
Exploits0References6
Rows per page
Query Builder