Lucene search
Veracode Vulnerability DatabaseVERACODE:3404HistoryFeb 02, 2017 - 7:10 a.m.
Replay Attack
2017-02-0207:10:30
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
EPSS
0.002
Percentile
64.5%
libzmq (aka) ZeroMQ is vulnerable to replay attacks. It is due to a flaw in the creation and validation of nonces, failing to detect nonces and disconnect malicious peers.
References
lists.opensuse.org/opensuse-updates/2014-11/msg00027.html
lists.opensuse.org/opensuse-updates/2014-11/msg00101.html
seclists.org/oss-sec/2014/q3/754
seclists.org/oss-sec/2014/q3/776
secunia.com/advisories/62262
www.securityfocus.com/bid/70157
bugzilla.redhat.com/show_bug.cgi?id=1147315
exchange.xforce.ibmcloud.com/vulnerabilities/96242
github.com/zeromq/libzmq/issues/1191
github.com/zeromq/libzmq/pull/1189
Related
prion
prion
Design/Logic Flaw
2014-10-08 19:55:00
debiancve
debiancve
CVE-2014-7203
2014-10-08 19:55:04
cve
cve
CVE-2014-7203
2014-10-08 19:55:04
ubuntucve
ubuntucve
CVE-2014-7203
2014-10-08 00:00:00
cvelist
cvelist
CVE-2014-7203
2014-10-08 19:00:00
nvd
nvd
CVE-2014-7203
2014-10-08 19:55:04
nessus
nessus
openSUSE Security Update : zeromq (openSUSE-SU-2014:1493-1)
2014-11-26 00:00:00
openSUSE Security Update : zeromq (openSUSE-SU-2014:1381-1)
2014-11-11 00:00:00
archlinux
archlinux
zeromq: Man-in-the-middle downgrade and replay attack
2014-10-15 00:00:00
osv
osv
libzmq5-4.2.0-1.1 on GA media
2024-06-15 00:00:00