Lucene search
K

478 matches found

OpenVAS
OpenVAS
added 2013/02/04 12:0 a.m.6 views

CentOS Update for nspr CESA-2013:0214 centos5

Check for the Version of nspr OpenVAS Vulnerability Test CentOS Update for nspr CESA-2013:0214 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.4AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/02/04 12:0 a.m.22 views

Scientific Linux Security Update : nss and nspr on SL5.x i386/x86_64 (20130131)

It was found that a Certificate Authority CA mis-issued two intermediate certificates to customers. These certificates could be used to launch man-in- the-middle attacks. This update renders those certificates as untrusted. This covers all uses of the certificates, including SSL, S/MIME, and code...

5.4AI score
Exploits0References1
OpenVAS
OpenVAS
added 2013/02/04 12:0 a.m.10 views

CentOS Update for nspr CESA-2013:0213 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/02/01 12:0 a.m.12 views

CentOS 6 : nspr (CESA-2013:0213)

Updated nss, nss-util, and nspr packages that fix one security issue, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Network Security Services NSS is a set of...

5.6AI score
Exploits0References1
Cent OS
Cent OS
added 2013/01/31 9:58 p.m.57 views

nspr, nss security update

CentOS Errata and Security Advisory CESA-2013:0214 Merged security bulletin from advisories: https://lists.centos.org/pipermail/centos-announce/2013-January/081380.html Affected packages: nspr nspr-devel nss nss-devel nss-pkcs11-devel nss-tools Upstream details at:...

5.8AI score
Exploits0References7
RedHat Linux
RedHat Linux
added 2013/01/31 7:13 p.m.3 views

nss: Dis-trust TURKTRUST mis-issued *.google.com certificate

REJECTED CVE TURKTRUST, a certificate authority in Mozilla’s root program, had mis-issued two intermediate certificates to customers. One of the certificates was used for man-in-the-middle MITM traffic management of domain names that the customer did not legitimately own or control. An intermedia...

7.3AI score
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2013/01/15 12:0 a.m.36 views

Mozilla Thunderbird < 17.0.2 Multiple Vulnerabilities

Binary data 6669.prm...

10CVSS9.6AI score0.73364EPSS
Exploits27References44
Tenable Nessus
Tenable Nessus
added 2013/01/15 12:0 a.m.30 views

SeaMonkey 2.14.x < 2.15 Multiple Vulnerabilities

Binary data 6670.prm...

10CVSS9.2AI score0.73364EPSS
Exploits27References44
Mozilla
Mozilla
added 2013/01/08 12:0 a.m.15 views

Mis-issued TURKTRUST certificates — Mozilla

Google reported to Mozilla that TURKTRUST, a certificate authority in Mozilla’s root program, had mis-issued two intermediate certificates to customers. The issue was not specific to Firefox but there was evidence that one of the certificates was used for man-in-the-middle MITM traffic management...

6.7AI score
Exploits0References1Affected Software5
Tenable Nessus
Tenable Nessus
added 2013/01/07 12:0 a.m.23 views

Debian DSA-2599-1 : nss - mis-issued intermediates

Google, Inc. discovered that the TurkTrust certification authority included in the Network Security Service libraries nss mis-issued two intermediate CAs which could be used to generate rogue end-entity certificates. This update explicitly distrusts those two intermediate CAs. The two existing...

5.4AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/01/07 12:0 a.m.33 views

SSL Certificate Chain Contains Illegitimate TURKTRUST Intermediate CA

The X.509 certificate chain sent by the remote host either contains or is signed by an intermediate Certificate Authority CA that was accidentally issued by TURKTRUST. Certificate chains descending from this intermediate CA could allow an attacker to perform man-in-the-middle attacks and decode...

5.5AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2012/06/04 12:0 a.m.32 views

MS KB2718704: Unauthorized Digital Certificates Could Allow Spoofing (deprecated)

The remote host is missing KB2718704, which updates the system's SSL certificate blacklist. Certificates issued by the Microsoft Terminal Services licensing certification authority can be used to sign code as Microsoft. An attacker could exploit this to spoof content or perform man-in-the-middle...

Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/03/06 12:0 a.m.43 views

HP-UX PHSS_41606 : s700_800 11.X OV NNM7.53 PA-RISC Intermediate Patch 28

s700800 11.X OV NNM7.53 PA-RISC Intermediate Patch 28 : The remote HP-UX host is affected by multiple vulnerabilities : - A potential vulnerability has been identified with HP OpenView Network Node Manager OV NNM running on Windows. The vulnerability could be exploited remotely to execute arbitra...

10CVSS6.2AI score0.7166EPSS
Exploits33References14
OpenVAS
OpenVAS
added 2012/02/11 12:0 a.m.13 views

Debian: Security Advisory (DSA-2343-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/01/18 12:0 a.m.40 views

MySQL < 5.5.6 Multiple Denial of Service

The version of MySQL installed on the remote host is older than 5.5.6. As such, it reportedly is prone to multiple denial of service attacks : - The improper handling of type errors during argument evaluation in extreme-value functions, e.g., 'LEAST' or 'GREATEST' causes server crashes...

5CVSS5.5AI score0.03391EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2011/11/28 12:0 a.m.18 views

Fedora 14 : nss-3.12.10-7.fc14 (2011-15586)

This security update revokes trust in DigiCert Sdn. Bhd Intermediate Certificate Authority from NSS - rhbz751674 It was found that the Malaysia-based Digicert Sdn. Bhd. subordinate Certificate Authority CA issued HTTPS certificates with weak keys. This update renders any HTTPS certificates signed...

5.5AI score
Exploits0References2
securityvulns
securityvulns
added 2011/11/11 12:0 a.m.111 views

[SECURITY] [DSA 2343-1] openssl security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2343-1 [email protected] http://www.debian.org/security/ Raphael Geissert November 09, 2011 http://www.debian.org/security/faq -...

2AI score
Exploits0
securityvulns
securityvulns
added 2011/11/11 12:0 a.m.28 views

&quot;Digicert Sdn. Bhd.&quot; weak certificates

Few weak certificates were issued by intermediate CA...

2.4AI score
Exploits0References1Affected Software1
Debian
Debian
added 2011/11/09 5:29 p.m.43 views

[SECURITY] [DSA 2343-1] openssl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2343-1 [email protected] http://www.debian.org/security/ Raphael Geissert November 09, 2011 http://www.debian.org/security/faq -...

6.7AI score
Exploits0
OSV
OSV
added 2011/11/09 12:0 a.m.14 views

DSA-2343-1 openssl - CA trust revocation

Bulletin has no description...

7.2AI score
Exploits0
Rows per page
Query Builder