Shibboleth XMLTooling-C mishandles digital signatures, allowing remote attackers to obtain sensitive information or conduct impersonation attacks via a crafted DTD. CVE-2018-048
Reporter | Title | Published | Views | Family All 35 |
---|---|---|---|---|
Tenable Nessus | Debian DSA-4085-1 : xmltooling - security update | 15 Jan 201800:00 | – | nessus |
Tenable Nessus | FreeBSD : shibboleth-sp -- vulnerable to forged user attribute data (3dbe9492-f7b8-11e7-a12d-6cc21735f730) | 15 Jan 201800:00 | – | nessus |
Tenable Nessus | Debian DLA-1242-1 : xmltooling security update | 15 Jan 201800:00 | – | nessus |
Tenable Nessus | openSUSE Security Update : xmltooling (openSUSE-2018-65) | 22 Jan 201800:00 | – | nessus |
Tenable Nessus | SUSE SLES12 Security Update : xmltooling (SUSE-SU-2018:0140-1) | 9 Mar 201800:00 | – | nessus |
Tenable Nessus | SUSE SLES12 Security Update : xmltooling (SUSE-SU-2018:0720-1) | 19 Mar 201800:00 | – | nessus |
Tenable Nessus | openSUSE Security Update : xmltooling (openSUSE-2018-276) | 19 Mar 201800:00 | – | nessus |
OSV | xmltooling - security update | 14 Jan 201800:00 | – | osv |
OSV | xmltooling - security update | 12 Jan 201800:00 | – | osv |
OSV | libxmltooling-devel-3.2.0-1.2 on GA media | 15 Jun 202400:00 | – | osv |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
ubuntu | 14.04 | noarch | xmltooling | 1.5.3-2+deb8u2build0.14.04.1 | UNKNOWN |
ubuntu | 16.04 | noarch | xmltooling | 1.5.6-2ubuntu0.1 | UNKNOWN |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo