2073 matches found
OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.237 and earlier allows remote attackers to affect availability via unknown vectors related to Security...
US-CERT Alert TA12-156A -- Microsoft Windows Unauthorized Digital Certificates
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Alert System Technical Cyber Security Alert TA12-156A Microsoft Windows Unauthorized Digital Certificates Original release date: June 04, 2012 Last revised: -- Source: US-CERT Systems Affected All supported versions of Microsoft Windows...
Unauthorized Microsoft Digital Certificates
Microsoft has released a security advisory to address the revocation of a number of unauthorized digital certificates. Maintaining these certificates within your certificate store may allow an attacker to spoof content, perform a phishing attack, or perform a man-in-the-middle attack. The followi...
Google to Stop Using Online CRL Checks for Chrome
In the face of mounting evidence that the CA system is inherently flawed, Google officials are in the process of making changes to the way Chrome handles certificate revocations, and no longer will be using online revocation checks. Instead, Chrome will use the existing update system in the brows...
Opera Multiple Vulnerabilities - December11 (Windows)
The host is installed with Opera and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboperamultvulndec11win.nasl 7029 2017-08-31 11:51:40Z teissa $ Opera Multiple Vulnerabilities - December11 Windows Authors: Rachana Shetty Copyright: Copyright c 2011 Greenbone Networks Gmb...
Opera Multiple Vulnerabilities - December11 (Mac OS X)
The host is installed with Opera and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboperamultvulndec11macosx.nasl 7029 2017-08-31 11:51:40Z teissa $ Opera Multiple Vulnerabilities - December11 Mac OS X Authors: Rachana Shetty Copyright: Copyright c 2011 Greenbone Networks...
Opera Multiple Vulnerabilities (Dec 2011) - Windows
Opera is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Opera Multiple Vulnerabilities (Dec 2011) - Mac OS X
Opera is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2011-4684
Opera before 11.60 does not properly handle certificate revocation, which has unspecified impact and remote attack vectors related to "corner cases."...
Design/Logic Flaw
Opera before 11.60 does not properly handle certificate revocation, which has unspecified impact and remote attack vectors related to "corner cases."...
CVE-2011-4684
Opera before 11.60 does not properly handle certificate revocation, which has unspecified impact and remote attack vectors related to "corner cases."...
CVE-2011-4684
Opera before 11.60 does not properly handle certificate revocation, per CVE-2011-4684. Connected sources confirm affected product: Opera browser; root cause: improper certificate revocation handling; impact is described as unspecified in the initial entry. Remediation evident in the connected doc...
Opera < 11.60 Multiple Vulnerabilities (BEAST)
The version of Opera installed on the remote Windows host is prior to 11.60. It is, therefore, affected by multiple vulnerabilities : - An unspecified error exists that can allow URL spoofing in the address bar. CVE-2011-4010 - Top level domain separation rules are not honored for two-letter top...
opera -- multiple vulnerabilities
Opera software reports: Fixed a moderately severe issue; details will be disclosed at a later date Fixed an issue that could allow pages to set cookies or communicate cross-site for some top level domains; see our advisory Improved handling of certificate revocation corner cases Added a fix for a...
[SECURITY] [DSA 2343-1] openssl security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2343-1 [email protected] http://www.debian.org/security/ Raphael Geissert November 09, 2011 http://www.debian.org/security/faq -...
Debian DSA-2343-1 : openssl - CA trust revocation
Several weak certificates were issued by Malaysian intermediate CA'Digicert Sdn. Bhd.' This event, along with other issues, has lead to Entrust Inc. and Verizon Cybertrust to revoke the CA's cross-signed certificates. This update to OpenSSL, a Secure Sockets Layer toolkit, reflects this decision ...
[SECURITY] [DSA 2343-1] openssl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2343-1 [email protected] http://www.debian.org/security/ Raphael Geissert November 09, 2011 http://www.debian.org/security/faq -...
Microsoft Windows Active Directory LDAPS Authentication Bypass Vulnerability (2630837)
This host is missing a critical security update according to Microsoft Bulletin MS11-086. OpenVAS Vulnerability Test $Id: secpodms11-086.nasl 8276 2018-01-03 12:29:18Z asteins $ Microsoft Windows Active Directory LDAPS Authentication Bypass Vulnerability 2630837 Authors: Madhuri D Copyright:...
Microsoft Windows active directory authentication bypass
Certificate revocation list is not checked on LDAPs access...
DSA-2343-1 openssl - CA trust revocation
Bulletin has no description...