Solaris 10 (x86) : 123939-04

GNOME 2.6.0x86: GNU Transport Layer Security Library Patch. Date this patch was last updated by Sun : Nov/15/14 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...

Solaris 10 (sparc) : 123938-03

GNOME 2.6.0: GNU Transport Layer Security Library Patch. Date this patch was last updated by Sun : Sep/13/14 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...

Solaris 10 (sparc) : 123938-05

GNOME 2.6.0: GNU Transport Layer Security Library Patch. Date this patch was last updated by Sun : Oct/17/16 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...

Solaris 10 (x86) : 123939-03

GNOME 2.6.0x86: GNU Transport Layer Security Library Patch. Date this patch was last updated by Sun : Sep/13/14 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...

Solaris 10 (sparc) : 123938-04

GNOME 2.6.0: GNU Transport Layer Security Library Patch. Date this patch was last updated by Sun : Nov/15/14 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...

NVIDIA GPU display driver contains multiple vulnerabilities in the kernel mode layer handler - Lenovo Support US

No description provided...

Bravo Tejari Web Portal - Cross-Site Request Forgery Vulnerability

Exploit for multiple platform in category web applications Exploit Title: Bravo Tejari Web Portal-CSRF CVE-ID: CVE-2018-7216 Vulnerability Type: Cross Site Request Forgery CSRF Vendor of Product: Tejari Affected Product Code Base: Bravo Solution Affected Component: Web Interface Management. Attac...

The vulnerability of the Junos operating system, related to improper code generation, allows a perpetrator to execute arbitrary code or cause service failures.

The vulnerability of the Junos operating system is related to incorrect code generation management. Exploiting this vulnerability allows a malicious actor to enhance their privileges and gain full control over the device by executing arbitrary commands or code on the target device. Alternatively,...

CVE-2017-17428

Cavium Nitrox SSL, Nitrox V SSL, and TurboSSL software development kits SDKs allow remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT attack...

Micro Focus Novell eDirectory Password Restriction Vulnerability

Micro Focus Novell eDirectory is an identity management infrastructure platform that combines identity management architecture and directory services technology from Micro Focus, UK. The platform provides authentication policies, data backup and recovery services, and data disaster recovery. A...

ALPINE-CVE-2017-15130

A denial of service flaw was found in dovecot before 2.2.34. An attacker able to generate random SNI server names could exploit TLS SNI configuration lookups, leading to excessive memory usage and the process to restart...

PT-2018-3408 · Dovecot +3 · Dovecot +3

Name of the Vulnerable Software and Affected Versions: dovecot versions prior to 2.2.34 Description: A denial of service flaw was found in the TLS SNI configuration lookups of the Dovecot mail server. An attacker able to generate random SNI server names could exploit this issue, leading to...

Apache Traffic Server Denial of Service Vulnerability (CNVD-2018-06433)

Apache Traffic Server or ATS or TS for short , is a high-performance , modular HTTP proxy and caching server . A denial of service vulnerability exists in the TLS handshake in Apache Traffic Server ATS 5.2.0 through 5.3.2, 6.0.0 through 6.2.0, and 7.0.0. An attacker can exploit this vulnerability...

UBUNTU-CVE-2017-15130

A denial of service flaw was found in dovecot before 2.2.34. An attacker able to generate random SNI server names could exploit TLS SNI configuration lookups, leading to excessive memory usage and the process to restart...

erlang: TLS server vulnerable to Adaptive Chosen Ciphertext attack allowing plaintext recovery or MITM attack

An erlang TLS server configured with cipher suites using RSA key exchange, may be vulnerable to an Adaptive Chosen Ciphertext attack AKA Bleichenbacher attack against RSA. This may result in plain-text recovery of encrypted messages and/or a man-in-the-middle MiTM attack, despite the attacker not...

LINE for iOS Man-in-the-Middle Attack Vulnerability

LINE for iOS is a suite of live chat software based on the iOS platform. The program supports free calls, sending SMS and more. A security vulnerability exists in LINE versions 7.1.3 to 7.1.5, which is caused by the program failing to validate the SSL server's X.509 certificate. The vulnerability...

CVE-2018-5762

The TLS implementation in the TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 58.1 before 58.160, 59.1 before 059.1a.17 IC 17, and 60.0 before 60.044 might allow remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT...

Wireshark epan/dissectors/packet-lltd.c file denial of service vulnerability

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in the epan/dissectors/packet-lltd.c file in Wireshark...

Artifex Software MuPDF 'count_entries' function stack buffer overflow vulnerability

Artifex Software MuPDF is a PDF library from Artifex Software, USA. A security vulnerability exists in the 'countentries' function in the pdf-layer.c file in Artifex Software MuPDF version 1.10a. A remote attacker can exploit this vulnerability to cause a denial of service stack consumption and...

UBUNTU-CVE-2012-6709

ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation...