Lucene search
K

20 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:49 a.m.5 views

SUSE CVE-2011-4619

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS8.4AI score0.16645EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2014/11/17 12:0 a.m.41 views

RHEL 6 : rhev-hypervisor6 (RHSA-2012:0109)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0109 advisory. The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization...

7.4CVSS7.8AI score0.16645EPSS
Exploits12References14
Tenable Nessus
Tenable Nessus
added 2013/09/27 12:0 a.m.71 views

Juniper Steel-Belted Radius Multiple OpenSSL Vulnerabilities

The version of Juniper Steel-Belted Radius software installed on the remote RedHat or CentOS host is affected by multiple OpenSSL vulnerabilities : - The SSL 3.0 implementation in OpenSSL does not properly initialize data structures for block cipher padding, which could allow remote attackers to...

5CVSS8AI score0.16645EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.39 views

Amazon Linux AMI : openssl (ALAS-2012-38)

It was discovered that the Datagram Transport Layer Security DTLS protocol implementation in OpenSSL leaked timing information when performing certain operations. A remote attacker could possibly use this flaw to retrieve plain text from the encrypted packets by using a DTLS server as a padding...

5CVSS7.4AI score0.16645EPSS
Exploits0References5
Amazon
Amazon
added 2013/02/17 12:0 a.m.92 views

Important: java-1.6.0-openjdk

Issue Overview: Multiple improper permission check issues were discovered in the AWT, CORBA, JMX, and Libraries components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. Multiple flaws were found in the way image parsers in the 2D an...

10CVSS8.8AI score0.08087EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2012/09/24 3:52 p.m.4 views

openssl: SGC restart DoS attack

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS7.3AI score0.16645EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/09/24 3:52 p.m.61 views

Important: Red Hat Security Advisory: openssl security update

An update for the OpenSSL component for JBoss Enterprise Web Server 1.0.2 for Solaris and Microsoft Windows that fixes multiple security issues is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common...

9.3CVSS7.6AI score0.48298EPSS
Exploits8References10
OpenVAS
OpenVAS
added 2012/08/03 12:0 a.m.40 views

Mandriva Update for openssl MDVSA-2012:007 (openssl)

Check for the Version of openssl OpenVAS Vulnerability Test Mandriva Update for openssl MDVSA-2012:007 openssl Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

9.3CVSS0.1AI score0.17687EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/07/30 12:0 a.m.37 views

CentOS Update for openssl CESA-2012:0059 centos6

Check for the Version of openssl OpenVAS Vulnerability Test CentOS Update for openssl CESA-2012:0059 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

5CVSS7.2AI score0.16645EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/07/30 12:0 a.m.36 views

CentOS Update for openssl CESA-2012:0060 centos5

Check for the Version of openssl OpenVAS Vulnerability Test CentOS Update for openssl CESA-2012:0060 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

9.3CVSS7.2AI score0.17687EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/07/30 12:0 a.m.26 views

CentOS Update for openssl CESA-2012:0086 centos4

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS8.2AI score0.16645EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/07/09 12:0 a.m.46 views

RedHat Update for openssl RHSA-2012:0059-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS8.7AI score0.16645EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2012/02/09 10:39 p.m.93 views

USN-1357-1: OpenSSL vulnerabilities

It was discovered that the elliptic curve cryptography ECC subsystem in OpenSSL, when using the Elliptic Curve Digital Signature Algorithm ECDSA for the ECDHEECDSA cipher suite, did not properly implement curves over binary fields. This could allow an attacker to determine private keys via a timi...

9.3CVSS7.8AI score0.17687EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2012/01/24 9:0 p.m.3 views

openssl: SGC restart DoS attack

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS7.3AI score0.16645EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2012/01/17 12:0 a.m.37 views

Mandriva Linux Security Advisory : openssl (MDVSA-2012:006)

Multiple vulnerabilities has been found and corrected in openssl : The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f performs a MAC check only if certain padding is valid, which makes it easier for remote attackers to recover plaintext via a padding oracle attack CVE-2011-410...

9.3CVSS7.9AI score0.17687EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2012/01/16 12:0 a.m.34 views

FreeBSD : OpenSSL -- multiple vulnerabilities (78cc8a46-3e56-11e1-89b4-001ec9578670)

The OpenSSL Team reports : 6 security flaws have been fixed in OpenSSL 1.0.0f : If X509VFLAGPOLICYCHECK is set in OpenSSL 0.9.8, then a policy check failure can lead to a double-free. OpenSSL prior to 1.0.0f and 0.9.8s failed to clear the bytes used as block cipher padding in SSL 3.0 records. As ...

9.3CVSS7.9AI score0.17687EPSS
Exploits0References8
OSV
OSV
added 2012/01/06 1:55 a.m.3 views

DEBIAN-CVE-2011-4619

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS9.1AI score0.16645EPSS
Exploits0References1
CVE
CVE
added 2012/01/06 1:0 a.m.15792 views

CVE-2011-4619

OpenSSL CVE-2011-4619 concerns the Server Gated Cryptography (SGC) handshake restart handling. The vulnerability exists in OpenSSL prior to 0.9.8s and in 1.x prior to 1.0.0f, where improper handling of handshake restarts can allow remote attackers to cause a denial-of-service (CPU consumption). C...

5CVSS7.9AI score0.16645EPSS
Exploits0References22Affected Software1
Debian CVE
Debian CVE
added 2012/01/06 1:0 a.m.24 views

CVE-2011-4619

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS8.1AI score0.16645EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2012/01/05 12:0 a.m.30 views

CVE-2011-4619

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS7.2AI score0.16645EPSS
Exploits0References3
Rows per page
Query Builder