The vulnerability of the Debian GNU\Linux operating system, which allows a perpetrator to trigger a service failure.

The vulnerability of the Debian GNU\Linux operating system is related to a memory reclamation error. Exploiting this vulnerability could allow an attacker, operating remotely, to cause a service failure by closing the SSL session at a certain time...

Mono SSLv2 Fallback Security Bypass Vulnerability

Mono is a free and open source project. The goal of the project is to create a series of ECMA-compliant Ecma-334 and Ecma-335 .NET tools , including the C compiler and common language architecture . A security bypass vulnerability exists in Mono that stems from an error in the TLS state machine. ...

DEBIAN-CVE-2015-2721

Mozilla Network Security Services NSS before 3.19, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, Thunderbird before 38.1, and other products, does not properly determine state transitions for the TLS state machine, which allows man-in-the-middle...

CVE-2015-1916

Unspecified vulnerability in IBM Java 8 before SR1 allows remote attackers to cause a denial of service via unknown vectors related to SSL/TLS and the Secure Socket Extension provider...

IBM WebSphere MQ Information Disclosure Vulnerability

IBM WebSphere MQ is a messaging middleware product from IBM, USA. The product focuses on providing reliable and proven messaging for Service Oriented Architecture SOA. An information disclosure vulnerability exists in versions of IBM WebSphere MQ prior to 8.0.0.3. Allows remote attackers to obtai...

LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks

A flaw was found in the way the TLS protocol composes the Diffie-Hellman exchange for both export and non-export grade cipher suites. An attacker could use this flaw to downgrade a DHE connection to use export-grade key sizes, which could then be broken by sufficient pre-computation. This can lea...

IBM Tivoli Security Directory Server Information Disclosure Vulnerability (CNVD-2015-04104)

IBM Tivoli Security Directory Server now known as IBM Security Directory Server, ISDS is a suite of enterprise identity management software from IBM in the United States that uses the Lightweight Directory Access Protocol LDAP. The software provides a trusted identity data infrastructure for...

NSS: incorrectly permited skipping of ServerKeyExchange (MFSA 2015-71)

It was found that NSS permitted skipping of the ServerKeyExchange packet during a handshake involving ECDHE Elliptic Curve Diffie-Hellman key Exchange. A remote attacker could use this flaw to bypass the forward-secrecy of a TLS/SSL connection...

LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks

A flaw was found in the way the TLS protocol composes the Diffie-Hellman exchange for both export and non-export grade cipher suites. An attacker could use this flaw to downgrade a DHE connection to use export-grade key sizes, which could then be broken by sufficient pre-computation. This can lea...

Cisco NX-OS LLDP Handling Denial of Service Vulnerability

Cisco NX-OS software is a data center-class operating system that embodies modular design, sustainability, and maintainability. A security vulnerability in the processing of LLDP messages by Cisco NX-OS allows a remote user on the local network to send specially crafted LLDP messages to an...

USN-2643-2 linux regression

The Fix for CVE-2015-1328 introduced a regression into the Linux kernel's overlayfs file system. The removal of a directory that only exists on the lower layer results in a kernel panic. We apologize for the inconvenience. Original advisory details: Philip Pettersson discovered a privilege...

Important: Red Hat Security Advisory: cups security update

Updated cups packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

BSA-2015-1935

Security Advisory ID : BSA-2015-1935 Component : TLS protocol 1.2 Revision : 5.0 The TLS protocol 1.2 and earlier, when a DHEEXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHEEXPORT choice, which allows man-in-the-middle attackers to conduct...

SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic...

Unjam the logjam

Security Unjam the logjam Share June 9th, 2015 When a browser and website communicate over a secure connection, they encrypt and decrypt the data using a shared symmetric encryption key; the same key is used for encryption and decryption. In order for the browser and server to make sure they use...

LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks

A flaw was found in the way the TLS protocol composes the Diffie-Hellman exchange for both export and non-export grade cipher suites. An attacker could use this flaw to downgrade a DHE connection to use export-grade key sizes, which could then be broken by sufficient pre-computation. This can lea...

PT-2015-5505

Name of the Vulnerable Software and Affected Versions IBM Java 8 versions before SR1 Description The issue allows remote attackers to cause a denial of service via unknown vectors related to SSL/TLS and the Secure Socket Extension provider. Additionally, a vulnerability in IBM SSL/TLS...

Unified-Layer Unrestricted File Upload 0day Exploit

Upload files with any extensions you want in sites that are hosted on unified layer and its childs like bluehost, hostmonster, justhost, ... and also these sites themeselves This is private exploit. You can buy it at https://0day.today...

The Windows kernel attack-vulnerability warning-the black bar safety net

This article summarizes the current windows kernel attacks of various attack techniques. Describes and demonstrates some of the common bypass windows kernel protection method, and a reverse three describes how to pass kernel defects found in similar bypass method. By the kernel attack and memory...

TLS protocol man-in-the-middle attack vulnerability

TLS Transport Layer Security is a set of protocols used to provide confidentiality and data integrity between two communicating applications. A security vulnerability exists in the TLS protocol version 1.2 and earlier. When the server enabled the DHEEXPORT cipher suite, the program failed to...