8 matches found
SUSE CVE-2019-3560
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infinite loop and denial-of-service based on user input. This issue affected versions of fizz prior to v2019.03.04.00...
The vulnerability of the ssl3_read_bytes function (record/rec_layer_s3.c) in the OpenSSL library, which allows a hacker to cause a service failure.
The vulnerability of the ssl3readbytes function in the record/reclayers3.c file of the OpenSSL library exists due to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
PT-2019-16609 · Fizz · Fizz
Name of the Vulnerable Software and Affected Versions: fizz versions prior to v2019.03.04.00 Description: The issue is related to an improperly performed length calculation on a buffer in PlaintextRecordLayer, which could lead to an infinite loop and denial-of-service based on user input...
IBM Tivoli Storage Manager Server 5.5.x Multiple Vulnerabilities
The version of IBM Tivoli Storage Manager installed on the remote host is 5.5 running on Windows or AIX. It is, therefore, potentially affected by multiple flaws in its bundled SSL library: - A flaw that could allow a remote attacker to cause a denial of service via a specially crafted...
IBM Tivoli Storage Manager Server 6.1.x Multiple Vulnerabilities
The version of IBM Tivoli Storage Manager installed on the remote host is 6.1 running on Windows or AIX. It is, therefore, potentially affected by multiple flaws in its bundled SSL library: - A flaw that could allow a remote attacker to cause a denial of service via a specially crafted...
CVE-2012-2191
IBM Global Security Kit aka GSKit before 8.0.14.22, as used in IBM Rational Directory Server, IBM Tivoli Directory Server, and other products, does not properly validate data during execution of a protection mechanism against the Vaudenay SSL CBC timing attack, which allows remote attackers to...
Code injection
IBM Global Security Kit aka GSKit before 8.0.14.22, as used in IBM Rational Directory Server, IBM Tivoli Directory Server, and other products, does not properly validate data during execution of a protection mechanism against the Vaudenay SSL CBC timing attack, which allows remote attackers to...
CVE-2012-2191
IBM Global Security Kit aka GSKit before 8.0.14.22, as used in IBM Rational Directory Server, IBM Tivoli Directory Server, and other products, does not properly validate data during execution of a protection mechanism against the Vaudenay SSL CBC timing attack, which allows remote attackers to...