Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2022/04/29 12:0 a.m.46 views

IBM Java 6.0 < 6.0.16.41 / 6.1 < 6.1.8.41 / 7.0 < 7.0.10.1 / 7.1 < 7.1.4.1 / 8.0 < 8.0.4.1 Multiple Vulnerabilities

The version of IBM Java installed on the remote host is prior to 6.0 6.0.16.41 / 6.1 6.1.8.41 / 7.0 7.0.10.1 / 7.1 7.1.4.1 / 8.0 8.0.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the Oracle January 17 2017 CPU advisory. - The DES and Triple DES ciphers, as used in t...

9.6CVSS7AI score0.95707EPSS
Exploits13References30
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 12:17 p.m.28 views

Security Bulletin: Sweet32 Birthday attacks on 64-bit block ciphers in TLS affect Content Manager for z/OS (CVE-2016-2183)

Summary System SSL's SSL V2, SSL V3 and TLS protocols support the use of Triple DES ciphers and are susceptible to the Sweet32 Birthday attack vulnerability. This vulnerability affects exploiters acting as either clients or servers. Content Manager 8 Resource Manager on z/OS uses System SSL and...

7.5CVSS0.9AI score0.95707EPSS
Exploits7Affected Software1
Ubuntu
Ubuntu
added 2017/07/31 1:47 p.m.113 views

USN-3372-1: NSS vulnerability

It was discovered that NSS incorrectly handled certain empty SSLv2 messages. A remote attacker could possibly use this issue to cause NSS to crash, resulting in a denial of service. CVE-2017-7502 Karthik Bhargavan and Gaetan Leurent discovered that the DES and Triple DES ciphers were vulnerable t...

9.8CVSS7.8AI score0.95707EPSS
Exploits7
OSV
OSV
added 2017/03/17 7:40 a.m.5 views

SUSE-SU-2017:0720-1 Security update for java-1_7_1-ibm

This update for java-171-ibm fixes the following issues: Security issue fixed: - CVE-2016-2183: The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remo...

7.5CVSS7.4AI score0.95707EPSS
Exploits7References3
Ubuntu
Ubuntu
added 2017/02/16 2:22 a.m.86 views

USN-3198-1: OpenJDK 6 vulnerabilities

Karthik Bhargavan and Gaetan Leurent discovered that the DES and Triple DES ciphers were vulnerable to birthday attacks. A remote attacker could possibly use this flaw to obtain clear text data from long encrypted sessions. This update moves those algorithms to the legacy algorithm set and causes...

9.6CVSS7.5AI score0.95707EPSS
Exploits12
Ubuntu
Ubuntu
added 2017/01/25 9:5 p.m.114 views

USN-3179-1: OpenJDK 8 vulnerabilities

Karthik Bhargavan and Gaetan Leurent discovered that the DES and Triple DES ciphers were vulnerable to birthday attacks. A remote attacker could possibly use this flaw to obtain clear text data from long encrypted sessions. This update moves those algorithms to the legacy algorithm set and causes...

9.6CVSS7.4AI score0.95707EPSS
Exploits13
Tenable Nessus
Tenable Nessus
added 2016/09/26 12:0 a.m.55 views

Ubuntu 14.04 LTS / 16.04 LTS : OpenSSL regression (USN-3087-2)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3087-2 advisory. USN-3087-1 fixed vulnerabilities in OpenSSL. The fix for CVE-2016-2182 was incomplete and caused a regression when parsing certificates. This update...

9.8CVSS7.6AI score0.44218EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2016/08/31 12:0 a.m.92 views

CVE-2016-2183

The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted...

7.5CVSS6.8AI score0.95707EPSS
Exploits7References24
Rows per page
Query Builder