Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/07 12:0 a.m.23 views

OpenSSL 0.9.6 < 0.9.6i Vulnerability

The version of OpenSSL installed on the remote host is prior to 0.9.6i. It is, therefore, affected by a vulnerability as referenced in the 0.9.6i advisory. - ssl3getrecord in s3pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i does not perform a MAC computation if an incorrect block cipher...

5CVSS8.3AI score0.13718EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/08/13 12:0 a.m.29 views

OpenSSL: Timing-based attacks on SSL/TLS with CBC encryption (CVE-2003-0078) - Windows

OpenSSL is prone to timing-based attacks on SSL/TLS with CBC encryption. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fre...

5CVSS6.5AI score0.13718EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/08/13 12:0 a.m.22 views

OpenSSL: Timing-based attacks on SSL/TLS with CBC encryption (CVE-2003-0078) - Linux

OpenSSL is prone to timing-based attacks on SSL/TLS with CBC encryption. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fre...

5CVSS6.5AI score0.13718EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/09/30 12:0 a.m.25 views

F5 BIG-IP - TMM SSL/TLS virtual server vulnerability CVE-2016-6907

TMM SSL/TLS virtual server using CBC cipher may be vulnerable to a SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/h:f5:big-ip"; if...

5.1AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/09/28 12:0 a.m.52 views

F5 Networks BIG-IP : TMM SSL/TLS virtual server vulnerability (K39508724)

TMM SSL/TLS virtual server using CBC cipher may be vulnerable to a 'Vaudenay timing attack' aka 'Padding oracle attack.'CVE-2016-6907 The BIG-IP system may be vulnerable to a padding oracle attack on the following platforms : The VIPRION B4450 blade and BIG-IP 2000 and 4000 series platforms are...

5.4AI score
Exploits0References2
NVD
NVD
added 2003/03/03 5:0 a.m.20 views

CVE-2003-0078

ssl3getrecord in s3pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i does not perform a MAC computation if an incorrect block cipher padding is used, which causes an information leak timing discrepancy that may make it easier to launch cryptographic attacks that rely on distinguishing betwe...

5CVSS6AI score0.13718EPSS
Exploits0References20
Rows per page
Query Builder