CVE-2011-3389

CVE-2011-3389 is the BEAST information-disclosure vulnerability in TLS/SSL CBC-mode encryption, allowing a network attacker to glean plaintext headers under certain configurations (e.g., when CBC with chained IVs is used and the attacker can inject/observe traffic). The connected documents show m...

CentOS 4 / 5 : firefox / xulrunner (CESA-2011:1242)

Updated firefox packages that fix one security issue are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having important security impact. Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime...

CentOS 4 / 5 : thunderbird (CESA-2011:1243)

An updated thunderbird package that fixes one security issue is now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having important security impact. Mozilla Thunderbird is a standalone mail and newsgroup client. It was found that a...

CentOS 4 : seamonkey (CESA-2011:1244)

Updated SeaMonkey packages that fix one security issue are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. SeaMonkey is an open source web browser, email and newsgroup client, IRC chat client, and HTML...

RHEL 6 : ca-certificates (RHSA-2011:1248)

An updated ca-certificates package that fixes one security issue is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. This package contains the set of CA certificates chosen by the Mozilla Foundation for use...

firefox, xulrunner security update

CentOS Errata and Security Advisory CESA-2011:1242 Merged security bulletin from advisories: https://lists.centos.org/pipermail/centos-announce/2011-September/079876.html https://lists.centos.org/pipermail/centos-announce/2011-September/079877.html...

thunderbird security update

CentOS Errata and Security Advisory CESA-2011:1243 Merged security bulletin from advisories: https://lists.centos.org/pipermail/centos-announce/2011-September/079874.html https://lists.centos.org/pipermail/centos-announce/2011-September/079875.html...

RHEL 4 / 5 / 6 : thunderbird (RHSA-2011:1243)

An updated thunderbird package that fixes one security issue is now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having important security impact. Mozilla Thunderbird is a standalone mail and newsgroup client. It was found that a...

RHEL 4 / 5 / 6 : firefox (RHSA-2011:1242)

Updated firefox packages that fix one security issue are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having important security impact. Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime...

Twitter Advances Ever So Slowly Toward Total Adoption of HTTPS

Twitter is at the beginning of a process that will eventually make HTTPS browsing a default feature on the popular micro-blogging platform. The company currently is experimenting by turning HTTPS on for a small percentage of users. Enabling HTTPS means that all communications between users and...

Automated HTTPS Vulnerability Testing by Qualys SSL Labs

Automated HTTPS Vulnerability Testing by Qualys SSL Labs One of main problem in HTTP protocol is encrypting traffic and verifying data security, securing the web application against any threat is very important especially that if hackers conduct a Man-in the middle attack he can get all users...

Automated HTTPS Vulnerability Testing by Qualys SSL Labs

Automated HTTPS Vulnerability Testing by Qualys SSL Labs One of main problem in HTTP protocol is encrypting traffic and verifying data security, securing the web application against any threat is very important especially that if hackers conduct a Man-in the middle attack he can get all users...

Enterprise Manager works with http, but not with https

Challenge This article covers two scenarios: The Veeam Backup Enterprise Manager webpage is not able to be reached when using both HTTP and HTTPS. or The Veeam Backup Enterprise Manager webpage is accessible when using HTTP, but fails to load when using HTTPS. Solution Enterprise Manager Webpage ...

Google Chrome Secure Cookie Security Bypass Vulnerability - Linux

Google Chrome is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Chrome Secure Cookie Security Bypass Vulnerability - Windows

Google Chrome is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Chrome Secure Cookie Security Bypass Vulnerability (Windows)

The host is running Google Chrome and is prone to security bypass vulnerability. OpenVAS Vulnerability Test $Id: secpodgooglechromesecurecookiesecbypassvulnwin.nasl 7029 2017-08-31 11:51:40Z teissa $ Google Chrome Secure Cookie Security Bypass Vulnerability Windows Authors: Rachana Shetty...

Google Chrome Secure Cookie Security Bypass Vulnerability (Mac OS X)

The host is running Google Chrome and is prone to security bypass vulnerability. OpenVAS Vulnerability Test $Id: secpodgooglechromesecurecookiesecbypassvulnmacosx.nasl 7024 2017-08-30 11:51:43Z teissa $ Google Chrome Secure Cookie Security Bypass Vulnerability Mac OS X Authors: Rachana Shetty...

Microsoft Explorer HTTPS Sessions Multiple Vulnerabilities (Windows)

The host is installed with Microsoft Explorer and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmsiehttpssessionsmultvuln.nasl 6526 2017-07-05 05:43:52Z cfischer $ Microsoft Explorer HTTPS Sessions Multiple Vulnerabilities Windows Authors: Madhuri D Copyright: Copyright ...

Microsoft Explorer HTTPS Sessions Multiple Vulnerabilities - Windows

Microsoft Explorer is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Opera 'HTTPS-Session' Multiple Vulnerabilities (Mac OS X)

The host is installed with Opera and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboperahttpssessionsmultvulnmacosx.nasl 7024 2017-08-30 11:51:43Z teissa $ Opera 'HTTPS-Session' Multiple Vulnerabilities Mac OS X Authors: Madhuri D Copyright: Copyright c 2011 Greenbone...