4 matches found
BSA-2017-426
Security Advisory ID : BSA-2017-426 Component : OpenSSL Revision : 1.0: Interim While parsing anIPAddressFamilyextension in an X.509 certificate, it is possible to do a one-byteoverread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is...
BSA-2017-271
Security Advisory ID : BSA-2017-271 Component : MD5 Algorithm Revision : 1.0: Interim The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of MD5 in the signature...
BSA-2017-259
Security Advisory ID : BSA-2017-259 Component : Weak ciphers such as RC4-MD5 Revision : 1.0: Interim If an SSL/TLS server or client is running on a 32-bit host, and a specific cipher is being used, then a truncated packet can cause that server or client to perform an out-of-bounds read, usually...
SNMP Public Community String Zero Day in Routers Disclosed
Researchers have discovered previously unreported problems in SNMP on embedded devices where devices such as secondary market home routers and a popular enterprise-grade load balancer are leaking authentication details in plain text. The data could be extracted by gaining access to the read-only...