Lucene search
K

643 matches found

OSV
OSV
added 2005/11/07 12:0 a.m.11 views

DSA-888-1 openssl - cryptographic weakness

Bulletin has no description...

5CVSS5.5AI score0.04866EPSS
Exploits0
Debian
Debian
added 2005/11/04 12:8 p.m.30 views

[SECURITY] [DSA 882-1] New OpenSSL packages fix cryptographic weakness

-------------------------------------------------------------------------- Debian Security Advisory DSA 882-1 [email protected] http://www.debian.org/security/ Martin Schulze November 4th, 2005 http://www.debian.org/security/faq -...

5CVSS5.8AI score0.04866EPSS
Exploits0
Debian
Debian
added 2005/11/04 12:8 p.m.34 views

[SECURITY] [DSA 882-1] New OpenSSL packages fix cryptographic weakness

-------------------------------------------------------------------------- Debian Security Advisory DSA 882-1 [email protected] http://www.debian.org/security/ Martin Schulze November 4th, 2005 http://www.debian.org/security/faq -...

5CVSS7.5AI score0.04866EPSS
Exploits0
Debian
Debian
added 2005/11/04 11:3 a.m.35 views

[SECURITY] [DSA 881-1] New OpenSSL 0.9.6 packages fix cryptographic weakness

-------------------------------------------------------------------------- Debian Security Advisory DSA 881-1 [email protected] http://www.debian.org/security/ Martin Schulze November 4th, 2005 http://www.debian.org/security/faq -...

5CVSS0.3AI score0.04866EPSS
Exploits0
Debian
Debian
added 2005/11/04 11:3 a.m.30 views

[SECURITY] [DSA 881-1] New OpenSSL 0.9.6 packages fix cryptographic weakness

-------------------------------------------------------------------------- Debian Security Advisory DSA 881-1 [email protected] http://www.debian.org/security/ Martin Schulze November 4th, 2005 http://www.debian.org/security/faq -...

5CVSS7.5AI score0.04866EPSS
Exploits0
OSV
OSV
added 2005/11/04 12:0 a.m.15 views

DSA-881-1 openssl096 - cryptographic weakness

Bulletin has no description...

5CVSS5.5AI score0.04866EPSS
Exploits0
OSV
OSV
added 2005/11/04 12:0 a.m.17 views

DSA-882-1 openssl095 - cryptographic weakness

Bulletin has no description...

5CVSS5.5AI score0.04866EPSS
Exploits0
Debian
Debian
added 2005/10/27 8:57 a.m.35 views

[SECURITY] [DSA 875-1] New OpenSSL packages fix cryptographic weakness

-------------------------------------------------------------------------- Debian Security Advisory DSA 875-1 [email protected] http://www.debian.org/security/ Martin Schulze October 27th, 2005 http://www.debian.org/security/faq -...

5CVSS7.5AI score0.04866EPSS
Exploits0
OSV
OSV
added 2005/10/27 12:0 a.m.30 views

DSA-875-1 openssl094 - cryptographic weakness

Bulletin has no description...

5CVSS5.7AI score0.04866EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/10/19 12:0 a.m.50 views

Mandrake Linux Security Advisory : openssl (MDKSA-2005:179)

Yutaka Oiwa discovered vulnerability potentially affects applications that use the SSL/TLS server implementation provided by OpenSSL. Such applications are affected if they use the option SSLOPMSIESSLV2RSAPADDING. This option is implied by use of SSLOPALL, which is intended to work around various...

7.5CVSS6.4AI score0.04866EPSS
Exploits0References2
NVD
NVD
added 2005/10/18 9:2 p.m.17 views

CVE-2005-2969

The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSLOPMSIESSLV2RSAPADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to u...

5CVSS5.5AI score0.04866EPSS
Exploits0References74
UbuntuCve
UbuntuCve
added 2005/10/18 9:2 p.m.38 views

CVE-2005-2969

The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSLOPMSIESSLV2RSAPADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to u...

5CVSS6.6AI score0.04866EPSS
Exploits0References2
OSV
OSV
added 2005/10/18 9:2 p.m.11 views

CVE-2005-2969

The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSLOPMSIESSLV2RSAPADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to u...

5.3AI score
Exploits0References75
Cvelist
Cvelist
added 2005/10/18 4:0 a.m.22 views

CVE-2005-2969

The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSLOPMSIESSLV2RSAPADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to u...

5.5AI score0.04866EPSS
Exploits0References74
Cisco
Cisco
added 2005/10/12 3:54 p.m.50 views

OpenSSL Version Rollback and Weak Cryptographic Algorithm Vulnerabilities

OpenSSL contains vulnerabilities that could allow an unauthenticated, remote attacker to bypass security restrictions. The first vulnerability CVE-2005-2969 affects any application using a SL/TLS server implementation provided by OpenSSL versions 0.9.7g and prior. If these implementations have...

5CVSS2.6AI score0.04866EPSS
Exploits0References1Affected Software7
Gentoo Linux
Gentoo Linux
added 2005/10/12 12:0 a.m.46 views

OpenSSL: SSL 2.0 protocol rollback

Background OpenSSL is a toolkit implementing the Secure Sockets Layer, Transport Layer Security protocols and a general-purpose cryptography library. Description Applications setting the SSLOPMSIESSLV2RSAPADDING option or the SSLOPALL option, that implies it can be forced by a third-party to...

5CVSS5.8AI score0.04866EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2005/10/11 3:36 p.m.3 views

openssl mitm downgrade attack

The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSLOPMSIESSLV2RSAPADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to u...

5CVSS6.6AI score0.04866EPSS
Exploits0References4
ALT Linux
ALT Linux
added 2005/10/11 12:0 a.m.31 views

Security fix for the ALT Linux 9 package openssl10 version 0.9.7g-alt3

Oct. 11, 2005 Dmitry V. Levin 0.9.7g-alt3 - Applied upstream fix for potential SSL 2.0 rollback during SSL handshake CAN-2005-2969...

5CVSS7AI score0.04866EPSS
Exploits0
ALT Linux
ALT Linux
added 2005/10/11 12:0 a.m.27 views

Security fix for the ALT Linux 9 package openssl1.1 version 0.9.7g-alt3

Oct. 11, 2005 Dmitry V. Levin 0.9.7g-alt3 - Applied upstream fix for potential SSL 2.0 rollback during SSL handshake CAN-2005-2969...

5CVSS7AI score0.04866EPSS
Exploits0
securityvulns
securityvulns
added 2005/10/11 12:0 a.m.47 views

OpenSSL SSL 2.0 rollback (weak cryptography)

Active man-in-the-middle attacker can force rollback to SSL 2.0 protocol with known cryptographic weakness for both client and server if SSLOPMSIESSLV2RSAPADDING or SSLOPALL configuration option is enabled...

3.3AI score
Exploits0References1Affected Software1
Rows per page
Query Builder