Lucene search
K

170 matches found

Tenable Nessus
Tenable Nessus
added 2015/06/05 12:0 a.m.52 views

Oracle Linux 6 / 7 : openssl (ELSA-2015-1072)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2015-1072 advisory. 1.0.1e-30.9 - fix CVE-2015-4000 - prevent the logjam attack on client - restrict the DH key size to at least 768 bits limit will be increased in future...

4.3CVSS7.2AI score0.9986EPSS
Exploits1References2
Oracle linux
Oracle linux
added 2015/06/04 12:0 a.m.76 views

openssl security update

1.0.1e-30.9 - fix CVE-2015-4000 - prevent the logjam attack on client - restrict the DH key size to at least 768 bits limit will be increased in future...

4.3CVSS1.8AI score0.9986EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2015/06/03 12:0 a.m.46 views

Fedora 22 : nss-3.19.1-1.0.fc22 / nss-softokn-3.19.1-1.0.fc22 / nss-util-3.19.1-1.0.fc22 (2015-9048) (Logjam)

Security fix for CVE-2015-4000 Update to the upstream NSS 3.19.1 release, which includes a fix for the recently published logjam attack. The previous 3.19 release made several notable changes related to the TLS protocol, one of them was to disable the SSL 3 protocol by default. For the full list ...

4.3CVSS7.2AI score0.9986EPSS
Exploits1References7
myhack58
myhack58
added 2015/05/24 12:0 a.m.58 views

Logjam attacks-the new encryption bug affects a large number of users-bug warning-the black bar safety net

Diffie-Hellman key exchange technology is one of the popular encryption algorithm which allows the Internet Protocol uses a shared key and a secure link. It is a multi-Protocol based including HTTPS, SSH, IPsec, SMTPS and some rely on the TLS Protocol. We have found a number of Diffie-Hellman key...

0.6AI score
Exploits0
ThreatPost
ThreatPost
added 2015/05/22 12:19 p.m.8 views

Podcast Discussing the Week's Security, Crypto News

Dennis Fisher and Mike Mimoso talk about the Logjam attack, the proposed Wassenaar export rules on exploits, and the letter to the president decrying crypto back doors. They do not talk about the Mad Men finale. Nor will they ever. Download: digitalunderground204.mp3 Music by Chris Gonsalves...

3AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2015/05/21 12:0 a.m.6 views

CVE-2015-4000

The TLS protocol 1.2 and earlier, when a DHEEXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHEEXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHEEXPORT and then...

6.1AI score0.9986EPSS
Exploits1References217
ThreatPost
ThreatPost
added 2015/05/20 7:28 a.m.9 views

New Logjam Attack on Diffie-Hellman Threatens Security of Browsers, VPNs

Researchers have uncovered a flaw in the way that some servers handle the Diffie-Hellman key exchange, a bug that’s somewhat similar to the FREAK attack and threatens the security of many Web and mail servers. The bug affects all of the major browsers and any server that supports export-grade...

6.8AI score
Exploits0References9
Fortinet
Fortinet
added 2015/05/20 12:0 a.m.146 views

CVE-2015-4000 "Logjam" attack

...

4.3CVSS5.8AI score0.9986EPSS
Exploits1
OSV
OSV
added 2015/05/20 12:0 a.m.4 views

UBUNTU-CVE-2015-4000

The TLS protocol 1.2 and earlier, when a DHEEXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHEEXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHEEXPORT and then...

3.7CVSS6.2AI score0.9986EPSS
Exploits1References17
UbuntuCve
UbuntuCve
added 2015/05/20 12:0 a.m.82 views

CVE-2015-4000

The TLS protocol 1.2 and earlier, when a DHEEXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHEEXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHEEXPORT and then...

4.3CVSS6.3AI score0.9986EPSS
Exploits1References16
Rows per page
Query Builder