Communications Application Session Controller@* Security Vulnerabilities and Issues — Communications Application Session Controller@* CVE List

Lucene search

OracleCommunications Application Session Controller*

3 matches found

CVE•added 2015/04/01 2:0 a.m.•846 views

CVE-2015-2808

The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic tha...

5CVSS4.8AI score0.4884EPSS

CVE•added 2013/03/15 9:55 p.m.•729 views

CVE-2013-2566

The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases, which makes it easier for remote attackers to conduct plaintext-recovery attacks via statistical analysis of ciphertext in a large number of sessions that use the same plaintext.

5.9CVSS5.7AI score0.93028EPSS

CVE•added 2015/01/28 7:59 p.m.•512 views

CVE-2015-0235

Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."

10CVSS7.7AI score0.87936EPSS