Lucene search
Veracode Vulnerability DatabaseVERACODE:4108HistoryMay 03, 2017 - 5:22 a.m.
Man-in-the-Middle (MitM)
2017-05-0305:22:07
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.001 Low
EPSS
Percentile
41.6%
crypto/tls in github.com/golang/go is vulnerable to man-in-the-middle (MitM) attacks. These attacks are possible when SessionTicketsDisabled is enabled.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/golang/go | eq | HEAD | |
| github.com/golang/go | le | go1.3.1 |
References
www.openwall.com/lists/oss-security/2014/09/26/28
www.securityfocus.com/bid/70156
exchange.xforce.ibmcloud.com/vulnerabilities/96693
github.com/golang/go/commit/247820ff6bfba6e1b7891f4bfc25511d68761d5d
groups.google.com/forum/#!msg/golang-nuts/eeOHNw_shwU/OHALUmroA5kJ
groups.google.com/forum/#%21msg/golang-nuts/eeOHNw_shwU/OHALUmroA5kJ
Related
nessus
nessus
Amazon Linux AMI : golang (ALAS-2014-437)
2014-11-03 00:00:00
Fedora 20 : golang-1.3.3-1.fc20 (2014-12077)
2014-10-12 00:00:00
Fedora 19 : golang-1.3.3-1.fc19 (2014-11971)
2014-10-12 00:00:00
amazon
amazon
Medium: golang
2014-10-28 17:15:00
fedora
fedora
[SECURITY] Fedora 21 Update: golang-1.3.3-1.fc21
2014-11-10 06:42:16
[SECURITY] Fedora 19 Update: golang-1.3.3-1.fc19
2014-10-11 07:03:24
[SECURITY] Fedora 20 Update: golang-1.3.3-1.fc20
2014-10-11 06:59:56
openvas
openvas
Fedora Update for golang FEDORA-2014-11971
2014-10-12 00:00:00
Fedora Update for golang FEDORA-2014-12077
2014-10-12 00:00:00
Amazon Linux: Security Advisory (ALAS-2014-437)
2015-09-08 00:00:00
ubuntucve
ubuntucve
CVE-2014-7189
2014-10-07 00:00:00
mageia
mageia
Updated golang packages fix CVE-2014-7189
2014-10-09 18:39:32
cvelist
cvelist
CVE-2014-7189
2014-10-07 14:00:00
prion
prion
Design/Logic Flaw
2014-10-07 14:55:00
cve
cve
CVE-2014-7189
2014-10-07 14:55:07
osv
osv
Man-in-the-middle attack with SessionTicketsDisabled in crypto/tls
2022-05-25 21:11:41
nvd
nvd
CVE-2014-7189
2014-10-07 14:55:07
ibm
ibm
WebSphere Application Server and IBM HTTP Server Security Bulletin List
2022-07-13 18:04:48