Anfälligkeitssuche        Suche in 191973 CVE Beschreibungen
und 86218 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

CVE Kennung:CVE-2010-4180
Beschreibung:OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is enabled, does not properly prevent modification of the ciphersuite in the session cache, which allows remote attackers to force the downgrade to an unintended cipher via vectors involving sniffing network traffic to discover a session identifier.
Test Kennungen:  
Querverweise: Common Vulnerability Exposure (CVE) ID: CVE-2010-4180
BugTraq ID: 45164
CERT/CC vulnerability note: VU#737740
Debian Security Information: DSA-2141 (Google Search)
HPdes Security Advisory: HPSBHF02706
HPdes Security Advisory: HPSBMA02658
HPdes Security Advisory: HPSBMU02759
HPdes Security Advisory: HPSBOV02670
HPdes Security Advisory: HPSBUX02638
HPdes Security Advisory: SSRT100339
HPdes Security Advisory: SSRT100413
HPdes Security Advisory: SSRT100475
HPdes Security Advisory: SSRT100613
HPdes Security Advisory: SSRT100817
RedHat Security Advisories: RHSA-2010:0977
RedHat Security Advisories: RHSA-2010:0978
RedHat Security Advisories: RHSA-2010:0979
RedHat Security Advisories: RHSA-2011:0896
SuSE Security Announcement: SUSE-SR:2011:001 (Google Search)
SuSE Security Announcement: SUSE-SR:2011:009 (Google Search)
SuSE Security Announcement: SUSE-SU-2011:0847 (Google Search)
SuSE Security Announcement: openSUSE-SU-2011:0845 (Google Search)

© 1998-2021 E-Soft Inc. Alle Rechte vorbehalten.