CVE-2009-3555
Microsoft IIS TLS Plaintext Injection Vulnerability
Description
The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue.
INFO
Published Date :
Nov. 9, 2009, 5:30 p.m.
Last Modified :
Nov. 21, 2024, 1:07 a.m.
Source :
[email protected]
Remotely Exploitable :
Yes !
Impact Score :
4.9
Exploitability Score :
8.6
Public PoC/Exploit Available at Github
CVE-2009-3555 has a 25 public PoC/Exploit
available at Github.
Go to the Public Exploits
tab to see the list.
Affected Products
The following products are affected by CVE-2009-3555
vulnerability.
Even if cvefeed.io
is aware of the exact versions of the
products
that
are
affected, the information is not represented in the table below.
References to Advisories, Solutions, and Tools
Here, you will find a curated list of external links that provide in-depth
information, practical solutions, and valuable tools related to
CVE-2009-3555
.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Week4
None
None
find vulnerabilities in webserver
Shell
None
None
None
Уязвимости и атаки на информационные системы
None
None
None
A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled.
Go
Pulse Secure VPN mitm Research - CVE-2020-8241, CVE-2020-8239
Python
Deep dive in DataPower TLS configuration
Network reconnaissance and vulnerability assessment tools.
Python
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2009-3555
vulnerability anywhere in the article.
The following table lists the changes that have been made to the
CVE-2009-3555
vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.
-
CVE Modified by af854a3a-2127-422b-91ae-364da2661108
Nov. 21, 2024
Action Type Old Value New Value Added Reference http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html Added Reference http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html Added Reference http://blogs.iss.net/archive/sslmitmiscsrf.html Added Reference http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during Added Reference http://clicky.me/tlsvuln Added Reference http://extendedsubset.com/?p=8 Added Reference http://extendedsubset.com/Renegotiating_TLS.pdf Added Reference http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 Added Reference http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 Added Reference http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041 Added Reference http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 Added Reference http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 Added Reference http://kbase.redhat.com/faq/docs/DOC-20491 Added Reference http://lists.apple.com/archives/security-announce/2010//May/msg00001.html Added Reference http://lists.apple.com/archives/security-announce/2010//May/msg00002.html Added Reference http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html Added Reference http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html Added Reference http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html Added Reference http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html Added Reference http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html Added Reference http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2 Added Reference http://marc.info/?l=bugtraq&m=126150535619567&w=2 Added Reference http://marc.info/?l=bugtraq&m=126150535619567&w=2 Added Reference http://marc.info/?l=bugtraq&m=127128920008563&w=2 Added Reference http://marc.info/?l=bugtraq&m=127128920008563&w=2 Added Reference http://marc.info/?l=bugtraq&m=127419602507642&w=2 Added Reference http://marc.info/?l=bugtraq&m=127419602507642&w=2 Added Reference http://marc.info/?l=bugtraq&m=127557596201693&w=2 Added Reference http://marc.info/?l=bugtraq&m=127557596201693&w=2 Added Reference http://marc.info/?l=bugtraq&m=130497311408250&w=2 Added Reference http://marc.info/?l=bugtraq&m=130497311408250&w=2 Added Reference http://marc.info/?l=bugtraq&m=132077688910227&w=2 Added Reference http://marc.info/?l=bugtraq&m=132077688910227&w=2 Added Reference http://marc.info/?l=bugtraq&m=133469267822771&w=2 Added Reference http://marc.info/?l=bugtraq&m=133469267822771&w=2 Added Reference http://marc.info/?l=bugtraq&m=134254866602253&w=2 Added Reference http://marc.info/?l=bugtraq&m=142660345230545&w=2 Added Reference http://marc.info/?l=bugtraq&m=142660345230545&w=2 Added Reference http://marc.info/?l=cryptography&m=125752275331877&w=2 Added Reference http://openbsd.org/errata45.html#010_openssl Added Reference http://openbsd.org/errata46.html#004_openssl Added Reference http://osvdb.org/60521 Added Reference http://osvdb.org/60972 Added Reference http://osvdb.org/62210 Added Reference http://osvdb.org/65202 Added Reference http://seclists.org/fulldisclosure/2009/Nov/139 Added Reference http://secunia.com/advisories/37291 Added Reference http://secunia.com/advisories/37292 Added Reference http://secunia.com/advisories/37320 Added Reference http://secunia.com/advisories/37383 Added Reference http://secunia.com/advisories/37399 Added Reference http://secunia.com/advisories/37453 Added Reference http://secunia.com/advisories/37501 Added Reference http://secunia.com/advisories/37504 Added Reference http://secunia.com/advisories/37604 Added Reference http://secunia.com/advisories/37640 Added Reference http://secunia.com/advisories/37656 Added Reference http://secunia.com/advisories/37675 Added Reference http://secunia.com/advisories/37859 Added Reference http://secunia.com/advisories/38003 Added Reference http://secunia.com/advisories/38020 Added Reference http://secunia.com/advisories/38056 Added Reference http://secunia.com/advisories/38241 Added Reference http://secunia.com/advisories/38484 Added Reference http://secunia.com/advisories/38687 Added Reference http://secunia.com/advisories/38781 Added Reference http://secunia.com/advisories/39127 Added Reference http://secunia.com/advisories/39136 Added Reference http://secunia.com/advisories/39242 Added Reference http://secunia.com/advisories/39243 Added Reference http://secunia.com/advisories/39278 Added Reference http://secunia.com/advisories/39292 Added Reference http://secunia.com/advisories/39317 Added Reference http://secunia.com/advisories/39461 Added Reference http://secunia.com/advisories/39500 Added Reference http://secunia.com/advisories/39628 Added Reference http://secunia.com/advisories/39632 Added Reference http://secunia.com/advisories/39713 Added Reference http://secunia.com/advisories/39819 Added Reference http://secunia.com/advisories/40070 Added Reference http://secunia.com/advisories/40545 Added Reference http://secunia.com/advisories/40747 Added Reference http://secunia.com/advisories/40866 Added Reference http://secunia.com/advisories/41480 Added Reference http://secunia.com/advisories/41490 Added Reference http://secunia.com/advisories/41818 Added Reference http://secunia.com/advisories/41967 Added Reference http://secunia.com/advisories/41972 Added Reference http://secunia.com/advisories/42377 Added Reference http://secunia.com/advisories/42379 Added Reference http://secunia.com/advisories/42467 Added Reference http://secunia.com/advisories/42724 Added Reference http://secunia.com/advisories/42733 Added Reference http://secunia.com/advisories/42808 Added Reference http://secunia.com/advisories/42811 Added Reference http://secunia.com/advisories/42816 Added Reference http://secunia.com/advisories/43308 Added Reference http://secunia.com/advisories/44183 Added Reference http://secunia.com/advisories/44954 Added Reference http://secunia.com/advisories/48577 Added Reference http://security.gentoo.org/glsa/glsa-200912-01.xml Added Reference http://security.gentoo.org/glsa/glsa-201203-22.xml Added Reference http://security.gentoo.org/glsa/glsa-201406-32.xml Added Reference http://securitytracker.com/id?1023148 Added Reference http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446 Added Reference http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1 Added Reference http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1 Added Reference http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1 Added Reference http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1 Added Reference http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1 Added Reference http://support.apple.com/kb/HT4004 Added Reference http://support.apple.com/kb/HT4170 Added Reference http://support.apple.com/kb/HT4171 Added Reference http://support.avaya.com/css/P8/documents/100070150 Added Reference http://support.avaya.com/css/P8/documents/100081611 Added Reference http://support.avaya.com/css/P8/documents/100114315 Added Reference http://support.avaya.com/css/P8/documents/100114327 Added Reference http://support.citrix.com/article/CTX123359 Added Reference http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES Added Reference http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released Added Reference http://sysoev.ru/nginx/patch.cve-2009-3555.txt Added Reference http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html Added Reference http://ubuntu.com/usn/usn-923-1 Added Reference http://wiki.rpath.com/Advisories:rPSA-2009-0155 Added Reference http://www.arubanetworks.com/support/alerts/aid-020810.txt Added Reference http://www.betanews.com/article/1257452450 Added Reference http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml Added Reference http://www.debian.org/security/2009/dsa-1934 Added Reference http://www.debian.org/security/2011/dsa-2141 Added Reference http://www.debian.org/security/2015/dsa-3253 Added Reference http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html Added Reference http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html Added Reference http://www.ietf.org/mail-archive/web/tls/current/msg03928.html Added Reference http://www.ietf.org/mail-archive/web/tls/current/msg03948.html Added Reference http://www.ingate.com/Relnote.php?ver=481 Added Reference http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 Added Reference http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 Added Reference http://www.kb.cert.org/vuls/id/120541 Added Reference http://www.links.org/?p=780 Added Reference http://www.links.org/?p=786 Added Reference http://www.links.org/?p=789 Added Reference http://www.mandriva.com/security/advisories?name=MDVSA-2010:076 Added Reference http://www.mandriva.com/security/advisories?name=MDVSA-2010:084 Added Reference http://www.mandriva.com/security/advisories?name=MDVSA-2010:089 Added Reference http://www.mozilla.org/security/announce/2010/mfsa2010-22.html Added Reference http://www.openoffice.org/security/cves/CVE-2009-3555.html Added Reference http://www.openssl.org/news/secadv_20091111.txt Added Reference http://www.openwall.com/lists/oss-security/2009/11/05/3 Added Reference http://www.openwall.com/lists/oss-security/2009/11/05/5 Added Reference http://www.openwall.com/lists/oss-security/2009/11/06/3 Added Reference http://www.openwall.com/lists/oss-security/2009/11/07/3 Added Reference http://www.openwall.com/lists/oss-security/2009/11/20/1 Added Reference http://www.openwall.com/lists/oss-security/2009/11/23/10 Added Reference http://www.opera.com/docs/changelogs/unix/1060/ Added Reference http://www.opera.com/support/search/view/944/ Added Reference http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html Added Reference http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html Added Reference http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html Added Reference http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c Added Reference http://www.redhat.com/support/errata/RHSA-2010-0119.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0130.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0155.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0165.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0167.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0337.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0338.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0339.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0768.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0770.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0786.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0807.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0865.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0986.html Added Reference http://www.redhat.com/support/errata/RHSA-2010-0987.html Added Reference http://www.redhat.com/support/errata/RHSA-2011-0880.html Added Reference http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html Added Reference http://www.securityfocus.com/archive/1/507952/100/0/threaded Added Reference http://www.securityfocus.com/archive/1/508075/100/0/threaded Added Reference http://www.securityfocus.com/archive/1/508130/100/0/threaded Added Reference http://www.securityfocus.com/archive/1/515055/100/0/threaded Added Reference http://www.securityfocus.com/archive/1/516397/100/0/threaded Added Reference http://www.securityfocus.com/archive/1/522176 Added Reference http://www.securityfocus.com/archive/1/522176 Added Reference http://www.securityfocus.com/bid/36935 Added Reference http://www.securitytracker.com/id?1023163 Added Reference http://www.securitytracker.com/id?1023204 Added Reference http://www.securitytracker.com/id?1023205 Added Reference http://www.securitytracker.com/id?1023206 Added Reference http://www.securitytracker.com/id?1023207 Added Reference http://www.securitytracker.com/id?1023208 Added Reference http://www.securitytracker.com/id?1023209 Added Reference http://www.securitytracker.com/id?1023210 Added Reference http://www.securitytracker.com/id?1023211 Added Reference http://www.securitytracker.com/id?1023212 Added Reference http://www.securitytracker.com/id?1023213 Added Reference http://www.securitytracker.com/id?1023214 Added Reference http://www.securitytracker.com/id?1023215 Added Reference http://www.securitytracker.com/id?1023216 Added Reference http://www.securitytracker.com/id?1023217 Added Reference http://www.securitytracker.com/id?1023218 Added Reference http://www.securitytracker.com/id?1023219 Added Reference http://www.securitytracker.com/id?1023224 Added Reference http://www.securitytracker.com/id?1023243 Added Reference http://www.securitytracker.com/id?1023270 Added Reference http://www.securitytracker.com/id?1023271 Added Reference http://www.securitytracker.com/id?1023272 Added Reference http://www.securitytracker.com/id?1023273 Added Reference http://www.securitytracker.com/id?1023274 Added Reference http://www.securitytracker.com/id?1023275 Added Reference http://www.securitytracker.com/id?1023411 Added Reference http://www.securitytracker.com/id?1023426 Added Reference http://www.securitytracker.com/id?1023427 Added Reference http://www.securitytracker.com/id?1023428 Added Reference http://www.securitytracker.com/id?1024789 Added Reference http://www.tombom.co.uk/blog/?p=85 Added Reference http://www.ubuntu.com/usn/USN-1010-1 Added Reference http://www.ubuntu.com/usn/USN-927-1 Added Reference http://www.ubuntu.com/usn/USN-927-4 Added Reference http://www.ubuntu.com/usn/USN-927-5 Added Reference http://www.us-cert.gov/cas/techalerts/TA10-222A.html Added Reference http://www.us-cert.gov/cas/techalerts/TA10-287A.html Added Reference http://www.vmware.com/security/advisories/VMSA-2010-0019.html Added Reference http://www.vmware.com/security/advisories/VMSA-2011-0003.html Added Reference http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html Added Reference http://www.vupen.com/english/advisories/2009/3164 Added Reference http://www.vupen.com/english/advisories/2009/3165 Added Reference http://www.vupen.com/english/advisories/2009/3205 Added Reference http://www.vupen.com/english/advisories/2009/3220 Added Reference http://www.vupen.com/english/advisories/2009/3310 Added Reference http://www.vupen.com/english/advisories/2009/3313 Added Reference http://www.vupen.com/english/advisories/2009/3353 Added Reference http://www.vupen.com/english/advisories/2009/3354 Added Reference http://www.vupen.com/english/advisories/2009/3484 Added Reference http://www.vupen.com/english/advisories/2009/3521 Added Reference http://www.vupen.com/english/advisories/2009/3587 Added Reference http://www.vupen.com/english/advisories/2010/0086 Added Reference http://www.vupen.com/english/advisories/2010/0173 Added Reference http://www.vupen.com/english/advisories/2010/0748 Added Reference http://www.vupen.com/english/advisories/2010/0848 Added Reference http://www.vupen.com/english/advisories/2010/0916 Added Reference http://www.vupen.com/english/advisories/2010/0933 Added Reference http://www.vupen.com/english/advisories/2010/0982 Added Reference http://www.vupen.com/english/advisories/2010/0994 Added Reference http://www.vupen.com/english/advisories/2010/1054 Added Reference http://www.vupen.com/english/advisories/2010/1107 Added Reference http://www.vupen.com/english/advisories/2010/1191 Added Reference http://www.vupen.com/english/advisories/2010/1350 Added Reference http://www.vupen.com/english/advisories/2010/1639 Added Reference http://www.vupen.com/english/advisories/2010/1673 Added Reference http://www.vupen.com/english/advisories/2010/1793 Added Reference http://www.vupen.com/english/advisories/2010/2010 Added Reference http://www.vupen.com/english/advisories/2010/2745 Added Reference http://www.vupen.com/english/advisories/2010/3069 Added Reference http://www.vupen.com/english/advisories/2010/3086 Added Reference http://www.vupen.com/english/advisories/2010/3126 Added Reference http://www.vupen.com/english/advisories/2011/0032 Added Reference http://www.vupen.com/english/advisories/2011/0033 Added Reference http://www.vupen.com/english/advisories/2011/0086 Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848 Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054 Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055 Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247 Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg21426108 Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg21432298 Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg24006386 Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg24025312 Added Reference http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only Added Reference http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html Added Reference https://bugzilla.mozilla.org/show_bug.cgi?id=526689 Added Reference https://bugzilla.mozilla.org/show_bug.cgi?id=545755 Added Reference https://bugzilla.redhat.com/show_bug.cgi?id=533125 Added Reference https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 Added Reference https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 Added Reference https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 Added Reference https://kb.bluecoat.com/index?page=content&id=SA50 Added Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E Added Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E Added Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E Added Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 Added Reference https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html Added Reference https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html -
CVE Modified by [email protected]
May. 14, 2024
Action Type Old Value New Value -
CVE Modified by [email protected]
Feb. 13, 2023
Action Type Old Value New Value Changed Description CVE-2009-3555 TLS: MITM attacks via session renegotiation The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue. Removed CVSS V2 Red Hat, Inc. (AV:N/AC:M/Au:N/C:N/I:P/A:N) Removed Reference https://access.redhat.com/errata/RHSA-2009:1579 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2009:1580 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2009:1694 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0011 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0119 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0130 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0155 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0162 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0163 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0164 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0165 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0166 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0167 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0337 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0338 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0339 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0408 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0440 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0768 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0770 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0786 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0807 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0865 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0986 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0987 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2011:0880 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2015:1591 [No Types Assigned] Removed Reference https://access.redhat.com/security/cve/CVE-2009-3555 [No Types Assigned] -
CVE Modified by [email protected]
Feb. 02, 2023
Action Type Old Value New Value Changed Description The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue. CVE-2009-3555 TLS: MITM attacks via session renegotiation Added CVSS V2 Red Hat, Inc. (AV:N/AC:M/Au:N/C:N/I:P/A:N) Removed Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory] Removed Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory] Removed Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory] Removed Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory] Added Reference https://access.redhat.com/errata/RHSA-2010:0339 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0337 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0338 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2009:1694 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2011:0880 [No Types Assigned] Added Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0440 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0011 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0130 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0119 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0807 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2015:1591 [No Types Assigned] Added Reference https://access.redhat.com/security/cve/CVE-2009-3555 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0865 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0986 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0987 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0155 [No Types Assigned] Added Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0166 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0167 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0164 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0165 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0162 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0163 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0770 [No Types Assigned] Added Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0786 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2009:1580 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2009:1579 [No Types Assigned] Added Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0408 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0768 [No Types Assigned] -
Modified Analysis by [email protected]
Aug. 04, 2022
Action Type Old Value New Value Changed Reference Type https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 No Types Assigned https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 Patch, Vendor Advisory Changed Reference Type https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory Changed Reference Type https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory Changed Reference Type https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory Changed Reference Type https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory Removed CWE NIST CWE-310 Added CWE NIST CWE-295 Added CPE Configuration OR *cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:* versions from (including) 0.1.0 up to (including) 0.8.22 -
CPE Deprecation Remap by [email protected]
Feb. 05, 2021
Action Type Old Value New Value Changed CPE Configuration OR *cpe:2.3:a:microsoft:internet_information_server:7.0:*:*:*:*:*:*:* OR *cpe:2.3:a:microsoft:internet_information_services:7.0:*:*:*:*:*:*:* -
CVE Modified by [email protected]
Feb. 13, 2020
Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E [No Types Assigned] -
CVE Modified by [email protected]
Feb. 03, 2020
Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E [No Types Assigned] -
CPE Deprecation Remap by [email protected]
Jul. 03, 2019
Action Type Old Value New Value Changed CPE Configuration OR *cpe:2.3:a:microsoft:iis:7.0:*:*:*:*:*:*:* OR *cpe:2.3:a:microsoft:internet_information_server:7.0:*:*:*:*:*:*:* -
CVE Modified by [email protected]
Mar. 25, 2019
Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E [No Types Assigned] -
CVE Modified by [email protected]
Mar. 21, 2019
Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E [No Types Assigned] -
CVE Modified by [email protected]
Oct. 12, 2018
Action Type Old Value New Value Removed Reference http://www.microsoft.com/technet/security/Bulletin/MS10-049.mspx [Patch, Vendor Advisory] Added Reference https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 [No Types Assigned] -
Modified Analysis by [email protected]
Oct. 11, 2018
Action Type Old Value New Value Changed Reference Type http://www.links.org/?p=786 No Types Assigned http://www.links.org/?p=786 Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html Third Party Advisory Changed Reference Type http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html No Types Assigned http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html Third Party Advisory Changed Reference Type http://www.links.org/?p=789 No Types Assigned http://www.links.org/?p=789 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0986.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0986.html Third Party Advisory Changed Reference Type http://extendedsubset.com/?p=8 No Types Assigned http://extendedsubset.com/?p=8 Broken Link Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/23/10 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/23/10 Mailing List, Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0786.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0786.html Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 Third Party Advisory Changed Reference Type http://www.arubanetworks.com/support/alerts/aid-020810.txt No Types Assigned http://www.arubanetworks.com/support/alerts/aid-020810.txt Broken Link Changed Reference Type http://www.links.org/?p=780 No Types Assigned http://www.links.org/?p=780 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0155.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0155.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/2745 No Types Assigned http://www.vupen.com/english/advisories/2010/2745 Third Party Advisory Changed Reference Type http://secunia.com/advisories/38687 No Types Assigned http://secunia.com/advisories/38687 Third Party Advisory Changed Reference Type http://www.microsoft.com/technet/security/Bulletin/MS10-049.mspx No Types Assigned http://www.microsoft.com/technet/security/Bulletin/MS10-049.mspx Patch, Vendor Advisory Changed Reference Type http://seclists.org/fulldisclosure/2009/Nov/139 No Types Assigned http://seclists.org/fulldisclosure/2009/Nov/139 Mailing List, Third Party Advisory Changed Reference Type http://www.openssl.org/news/secadv_20091111.txt No Types Assigned http://www.openssl.org/news/secadv_20091111.txt Third Party Advisory Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 Third Party Advisory Changed Reference Type http://security.gentoo.org/glsa/glsa-201203-22.xml No Types Assigned http://security.gentoo.org/glsa/glsa-201203-22.xml Third Party Advisory Changed Reference Type http://support.avaya.com/css/P8/documents/100114315 No Types Assigned http://support.avaya.com/css/P8/documents/100114315 Third Party Advisory Changed Reference Type http://secunia.com/advisories/41972 No Types Assigned http://secunia.com/advisories/41972 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023411 No Types Assigned http://www.securitytracker.com/id?1023411 Third Party Advisory, VDB Entry Changed Reference Type http://secunia.com/advisories/41967 No Types Assigned http://secunia.com/advisories/41967 Third Party Advisory Changed Reference Type http://security.gentoo.org/glsa/glsa-201406-32.xml No Types Assigned http://security.gentoo.org/glsa/glsa-201406-32.xml Third Party Advisory Changed Reference Type http://secunia.com/advisories/42816 No Types Assigned http://secunia.com/advisories/42816 Third Party Advisory Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2010:076 No Types Assigned http://www.mandriva.com/security/advisories?name=MDVSA-2010:076 Broken Link Changed Reference Type http://www.debian.org/security/2009/dsa-1934 No Types Assigned http://www.debian.org/security/2009/dsa-1934 Third Party Advisory Changed Reference Type http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 No Types Assigned http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 Broken Link Changed Reference Type http://secunia.com/advisories/40070 No Types Assigned http://secunia.com/advisories/40070 Third Party Advisory Changed Reference Type http://osvdb.org/62210 No Types Assigned http://osvdb.org/62210 Broken Link Changed Reference Type http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html No Types Assigned http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html Broken Link Changed Reference Type http://www.kb.cert.org/vuls/id/120541 US Government Resource http://www.kb.cert.org/vuls/id/120541 Third Party Advisory, US Government Resource Changed Reference Type http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released No Types Assigned http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released Broken Link Changed Reference Type http://secunia.com/advisories/42811 No Types Assigned http://secunia.com/advisories/42811 Third Party Advisory Changed Reference Type http://secunia.com/advisories/42377 No Types Assigned http://secunia.com/advisories/42377 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg21432298 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg21432298 Third Party Advisory Changed Reference Type http://secunia.com/advisories/42379 No Types Assigned http://secunia.com/advisories/42379 Third Party Advisory Changed Reference Type http://lists.apple.com/archives/security-announce/2010//May/msg00002.html No Types Assigned http://lists.apple.com/archives/security-announce/2010//May/msg00002.html Mailing List, Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/508075/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/508075/100/0/threaded Third Party Advisory, VDB Entry Changed Reference Type http://secunia.com/advisories/42808 No Types Assigned http://secunia.com/advisories/42808 Third Party Advisory Changed Reference Type http://sysoev.ru/nginx/patch.cve-2009-3555.txt No Types Assigned http://sysoev.ru/nginx/patch.cve-2009-3555.txt Broken Link Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2010:084 No Types Assigned http://www.mandriva.com/security/advisories?name=MDVSA-2010:084 Broken Link Changed Reference Type http://www.tombom.co.uk/blog/?p=85 No Types Assigned http://www.tombom.co.uk/blog/?p=85 Broken Link Changed Reference Type http://secunia.com/advisories/40866 No Types Assigned http://secunia.com/advisories/40866 Third Party Advisory Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2010:089 No Types Assigned http://www.mandriva.com/security/advisories?name=MDVSA-2010:089 Broken Link Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0338.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0338.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/40747 No Types Assigned http://secunia.com/advisories/40747 Third Party Advisory Changed Reference Type https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html No Types Assigned https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/39632 No Types Assigned http://secunia.com/advisories/39632 Third Party Advisory Changed Reference Type http://www.ubuntu.com/usn/USN-927-5 No Types Assigned http://www.ubuntu.com/usn/USN-927-5 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1639 No Types Assigned http://www.vupen.com/english/advisories/2010/1639 Third Party Advisory Changed Reference Type http://www.ubuntu.com/usn/USN-927-4 No Types Assigned http://www.ubuntu.com/usn/USN-927-4 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3165 Vendor Advisory http://www.vupen.com/english/advisories/2009/3165 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37453 No Types Assigned http://secunia.com/advisories/37453 Third Party Advisory Changed Reference Type http://www.vmware.com/security/advisories/VMSA-2010-0019.html No Types Assigned http://www.vmware.com/security/advisories/VMSA-2010-0019.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3164 Vendor Advisory http://www.vupen.com/english/advisories/2009/3164 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html Third Party Advisory Changed Reference Type http://www.ubuntu.com/usn/USN-927-1 No Types Assigned http://www.ubuntu.com/usn/USN-927-1 Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0770.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0770.html Third Party Advisory Changed Reference Type http://openbsd.org/errata46.html#004_openssl No Types Assigned http://openbsd.org/errata46.html#004_openssl Third Party Advisory Changed Reference Type http://support.avaya.com/css/P8/documents/100081611 No Types Assigned http://support.avaya.com/css/P8/documents/100081611 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2011/0086 No Types Assigned http://www.vupen.com/english/advisories/2011/0086 Third Party Advisory Changed Reference Type http://www.debian.org/security/2011/dsa-2141 No Types Assigned http://www.debian.org/security/2011/dsa-2141 Third Party Advisory Changed Reference Type http://www.debian.org/security/2015/dsa-3253 No Types Assigned http://www.debian.org/security/2015/dsa-3253 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/3126 No Types Assigned http://www.vupen.com/english/advisories/2010/3126 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37604 No Types Assigned http://secunia.com/advisories/37604 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=130497311408250&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=130497311408250&w=2 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0165.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0165.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/37292 Vendor Advisory http://secunia.com/advisories/37292 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37291 Vendor Advisory http://secunia.com/advisories/37291 Third Party Advisory Changed Reference Type http://secunia.com/advisories/38020 No Types Assigned http://secunia.com/advisories/38020 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1191 No Types Assigned http://www.vupen.com/english/advisories/2010/1191 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023428 No Types Assigned http://www.securitytracker.com/id?1023428 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023427 No Types Assigned http://www.securitytracker.com/id?1023427 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023426 No Types Assigned http://www.securitytracker.com/id?1023426 Third Party Advisory, VDB Entry Changed Reference Type https://kb.bluecoat.com/index?page=content&id=SA50 No Types Assigned https://kb.bluecoat.com/index?page=content&id=SA50 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/0086 No Types Assigned http://www.vupen.com/english/advisories/2010/0086 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1054 No Types Assigned http://www.vupen.com/english/advisories/2010/1054 Third Party Advisory Changed Reference Type http://www.betanews.com/article/1257452450 No Types Assigned http://www.betanews.com/article/1257452450 Third Party Advisory Changed Reference Type http://secunia.com/advisories/38003 No Types Assigned http://secunia.com/advisories/38003 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37399 No Types Assigned http://secunia.com/advisories/37399 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0865.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0865.html Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html Third Party Advisory Changed Reference Type http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 No Types Assigned http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 Broken Link Changed Reference Type http://secunia.com/advisories/39461 No Types Assigned http://secunia.com/advisories/39461 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=126150535619567&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=126150535619567&w=2 Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 Third Party Advisory Changed Reference Type http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html No Types Assigned http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html Broken Link Changed Reference Type http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml No Types Assigned http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml Third Party Advisory Changed Reference Type https://bugzilla.redhat.com/show_bug.cgi?id=533125 No Types Assigned https://bugzilla.redhat.com/show_bug.cgi?id=533125 Issue Tracking, Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023215 No Types Assigned http://www.securitytracker.com/id?1023215 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023214 No Types Assigned http://www.securitytracker.com/id?1023214 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023213 No Types Assigned http://www.securitytracker.com/id?1023213 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023212 No Types Assigned http://www.securitytracker.com/id?1023212 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023211 No Types Assigned http://www.securitytracker.com/id?1023211 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023210 No Types Assigned http://www.securitytracker.com/id?1023210 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2010/2010 No Types Assigned http://www.vupen.com/english/advisories/2010/2010 Third Party Advisory Changed Reference Type http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html No Types Assigned http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html Third Party Advisory Changed Reference Type http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446 No Types Assigned http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446 Third Party Advisory Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1 Broken Link Changed Reference Type http://www.vupen.com/english/advisories/2010/0994 No Types Assigned http://www.vupen.com/english/advisories/2010/0994 Third Party Advisory Changed Reference Type http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 No Types Assigned http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 Third Party Advisory Changed Reference Type http://securitytracker.com/id?1023148 No Types Assigned http://securitytracker.com/id?1023148 Third Party Advisory, VDB Entry Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=133469267822771&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=133469267822771&w=2 Third Party Advisory Changed Reference Type http://secunia.com/advisories/38241 No Types Assigned http://secunia.com/advisories/38241 Third Party Advisory Changed Reference Type http://support.apple.com/kb/HT4004 No Types Assigned http://support.apple.com/kb/HT4004 Third Party Advisory Changed Reference Type https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt No Types Assigned https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt Third Party Advisory Changed Reference Type http://secunia.com/advisories/38484 No Types Assigned http://secunia.com/advisories/38484 Third Party Advisory Changed Reference Type http://secunia.com/advisories/42733 No Types Assigned http://secunia.com/advisories/42733 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2011/0033 No Types Assigned http://www.vupen.com/english/advisories/2011/0033 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2011/0032 No Types Assigned http://www.vupen.com/english/advisories/2011/0032 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0337.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0337.html Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023209 No Types Assigned http://www.securitytracker.com/id?1023209 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023208 No Types Assigned http://www.securitytracker.com/id?1023208 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023207 No Types Assigned http://www.securitytracker.com/id?1023207 Third Party Advisory, VDB Entry Changed Reference Type https://bugzilla.mozilla.org/show_bug.cgi?id=545755 No Types Assigned https://bugzilla.mozilla.org/show_bug.cgi?id=545755 Issue Tracking, Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023206 No Types Assigned http://www.securitytracker.com/id?1023206 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023205 No Types Assigned http://www.securitytracker.com/id?1023205 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023204 No Types Assigned http://www.securitytracker.com/id?1023204 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2010/0982 No Types Assigned http://www.vupen.com/english/advisories/2010/0982 Third Party Advisory Changed Reference Type http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c No Types Assigned http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c Broken Link Changed Reference Type http://www.vupen.com/english/advisories/2009/3521 No Types Assigned http://www.vupen.com/english/advisories/2009/3521 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/0748 No Types Assigned http://www.vupen.com/english/advisories/2010/0748 Third Party Advisory Changed Reference Type http://www.vmware.com/security/advisories/VMSA-2011-0003.html No Types Assigned http://www.vmware.com/security/advisories/VMSA-2011-0003.html Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0768.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0768.html Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=127128920008563&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=127128920008563&w=2 Third Party Advisory Changed Reference Type http://secunia.com/advisories/39317 No Types Assigned http://secunia.com/advisories/39317 Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/516397/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/516397/100/0/threaded Third Party Advisory, VDB Entry Changed Reference Type http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html No Types Assigned http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=132077688910227&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=132077688910227&w=2 Third Party Advisory Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html Third Party Advisory Changed Reference Type http://blogs.iss.net/archive/sslmitmiscsrf.html No Types Assigned http://blogs.iss.net/archive/sslmitmiscsrf.html Broken Link Changed Reference Type http://secunia.com/advisories/37383 No Types Assigned http://secunia.com/advisories/37383 Third Party Advisory Changed Reference Type http://secunia.com/advisories/40545 No Types Assigned http://secunia.com/advisories/40545 Third Party Advisory Changed Reference Type http://secunia.com/advisories/42724 No Types Assigned http://secunia.com/advisories/42724 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2011-0880.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2011-0880.html Third Party Advisory Changed Reference Type https://bugzilla.mozilla.org/show_bug.cgi?id=526689 No Types Assigned https://bugzilla.mozilla.org/show_bug.cgi?id=526689 Issue Tracking, Third Party Advisory Changed Reference Type http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041 No Types Assigned http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041 Broken Link Changed Reference Type http://www.openoffice.org/security/cves/CVE-2009-3555.html No Types Assigned http://www.openoffice.org/security/cves/CVE-2009-3555.html Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/0173 No Types Assigned http://www.vupen.com/english/advisories/2010/0173 Third Party Advisory Changed Reference Type http://secunia.com/advisories/38056 No Types Assigned http://secunia.com/advisories/38056 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37640 No Types Assigned http://secunia.com/advisories/37640 Third Party Advisory Changed Reference Type http://www.ingate.com/Relnote.php?ver=481 No Types Assigned http://www.ingate.com/Relnote.php?ver=481 Third Party Advisory Changed Reference Type http://www.ubuntu.com/usn/USN-1010-1 No Types Assigned http://www.ubuntu.com/usn/USN-1010-1 Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=127419602507642&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=127419602507642&w=2 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0987.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0987.html Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html Third Party Advisory Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1 Broken Link Changed Reference Type https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 No Types Assigned https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 Third Party Advisory Changed Reference Type http://www.us-cert.gov/cas/techalerts/TA10-222A.html US Government Resource http://www.us-cert.gov/cas/techalerts/TA10-222A.html Third Party Advisory, US Government Resource Changed Reference Type http://clicky.me/tlsvuln No Types Assigned http://clicky.me/tlsvuln Exploit, Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=134254866602253&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=134254866602253&w=2 Third Party Advisory Changed Reference Type http://support.apple.com/kb/HT4170 No Types Assigned http://support.apple.com/kb/HT4170 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023224 No Types Assigned http://www.securitytracker.com/id?1023224 Third Party Advisory, VDB Entry Changed Reference Type http://secunia.com/advisories/39819 No Types Assigned http://secunia.com/advisories/39819 Third Party Advisory Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3587 No Types Assigned http://www.vupen.com/english/advisories/2009/3587 Third Party Advisory Changed Reference Type http://secunia.com/advisories/39136 No Types Assigned http://secunia.com/advisories/39136 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3220 Vendor Advisory http://www.vupen.com/english/advisories/2009/3220 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848 Third Party Advisory Changed Reference Type http://support.apple.com/kb/HT4171 No Types Assigned http://support.apple.com/kb/HT4171 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0339.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0339.html Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/508130/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/508130/100/0/threaded Third Party Advisory, VDB Entry Changed Reference Type http://osvdb.org/60521 No Types Assigned http://osvdb.org/60521 Broken Link Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/07/3 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/07/3 Mailing List, Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/0848 No Types Assigned http://www.vupen.com/english/advisories/2010/0848 Third Party Advisory Changed Reference Type http://lists.apple.com/archives/security-announce/2010//May/msg00001.html No Types Assigned http://lists.apple.com/archives/security-announce/2010//May/msg00001.html Mailing List, Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023219 No Types Assigned http://www.securitytracker.com/id?1023219 Third Party Advisory, VDB Entry Changed Reference Type http://www.securityfocus.com/bid/36935 Exploit, Patch http://www.securityfocus.com/bid/36935 Exploit, Patch, Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023218 No Types Assigned http://www.securitytracker.com/id?1023218 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023217 No Types Assigned http://www.securitytracker.com/id?1023217 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023216 No Types Assigned http://www.securitytracker.com/id?1023216 Third Party Advisory, VDB Entry Changed Reference Type http://secunia.com/advisories/37504 No Types Assigned http://secunia.com/advisories/37504 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1024789 No Types Assigned http://www.securitytracker.com/id?1024789 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2009/3313 No Types Assigned http://www.vupen.com/english/advisories/2009/3313 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3310 No Types Assigned http://www.vupen.com/english/advisories/2009/3310 Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 Third Party Advisory Changed Reference Type http://www.opera.com/docs/changelogs/unix/1060/ No Types Assigned http://www.opera.com/docs/changelogs/unix/1060/ Third Party Advisory Changed Reference Type http://secunia.com/advisories/39127 No Types Assigned http://secunia.com/advisories/39127 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37501 No Types Assigned http://secunia.com/advisories/37501 Third Party Advisory Changed Reference Type http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html No Types Assigned http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html Third Party Advisory Changed Reference Type https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 No Types Assigned https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 Third Party Advisory, VDB Entry Changed Reference Type http://osvdb.org/65202 No Types Assigned http://osvdb.org/65202 Broken Link Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0130.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0130.html Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/507952/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/507952/100/0/threaded Third Party Advisory, VDB Entry Changed Reference Type http://www.mozilla.org/security/announce/2010/mfsa2010-22.html No Types Assigned http://www.mozilla.org/security/announce/2010/mfsa2010-22.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/44954 No Types Assigned http://secunia.com/advisories/44954 Third Party Advisory Changed Reference Type http://www.ietf.org/mail-archive/web/tls/current/msg03928.html No Types Assigned http://www.ietf.org/mail-archive/web/tls/current/msg03928.html Third Party Advisory Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html Third Party Advisory Changed Reference Type http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html No Types Assigned http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0807.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0807.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3205 Vendor Advisory http://www.vupen.com/english/advisories/2009/3205 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37859 No Types Assigned http://secunia.com/advisories/37859 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023243 No Types Assigned http://www.securitytracker.com/id?1023243 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2010/1350 No Types Assigned http://www.vupen.com/english/advisories/2010/1350 Third Party Advisory Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1 Broken Link Changed Reference Type http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html No Types Assigned http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html Mailing List, Third Party Advisory Changed Reference Type http://secunia.com/advisories/39242 No Types Assigned http://secunia.com/advisories/39242 Third Party Advisory Changed Reference Type http://support.citrix.com/article/CTX123359 No Types Assigned http://support.citrix.com/article/CTX123359 Third Party Advisory Changed Reference Type http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html No Types Assigned http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/39243 No Types Assigned http://secunia.com/advisories/39243 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg21426108 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg21426108 Third Party Advisory Changed Reference Type http://secunia.com/advisories/39628 No Types Assigned http://secunia.com/advisories/39628 Third Party Advisory Changed Reference Type http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only No Types Assigned http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023275 No Types Assigned http://www.securitytracker.com/id?1023275 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023274 No Types Assigned http://www.securitytracker.com/id?1023274 Third Party Advisory, VDB Entry Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/37320 Vendor Advisory http://secunia.com/advisories/37320 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023273 No Types Assigned http://www.securitytracker.com/id?1023273 Third Party Advisory, VDB Entry Changed Reference Type http://secunia.com/advisories/39500 No Types Assigned http://secunia.com/advisories/39500 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023272 No Types Assigned http://www.securitytracker.com/id?1023272 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023271 No Types Assigned http://www.securitytracker.com/id?1023271 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023270 No Types Assigned http://www.securitytracker.com/id?1023270 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2010/0933 No Types Assigned http://www.vupen.com/english/advisories/2010/0933 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1107 No Types Assigned http://www.vupen.com/english/advisories/2010/1107 Third Party Advisory Changed Reference Type http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during No Types Assigned http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during Third Party Advisory Changed Reference Type http://wiki.rpath.com/Advisories:rPSA-2009-0155 No Types Assigned http://wiki.rpath.com/Advisories:rPSA-2009-0155 Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=127557596201693&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=127557596201693&w=2 Third Party Advisory Changed Reference Type http://osvdb.org/60972 No Types Assigned http://osvdb.org/60972 Broken Link Changed Reference Type http://secunia.com/advisories/38781 No Types Assigned http://secunia.com/advisories/38781 Third Party Advisory Changed Reference Type http://www.ietf.org/mail-archive/web/tls/current/msg03948.html No Types Assigned http://www.ietf.org/mail-archive/web/tls/current/msg03948.html Third Party Advisory Changed Reference Type http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html No Types Assigned http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg24025312 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg24025312 Third Party Advisory Changed Reference Type http://secunia.com/advisories/48577 No Types Assigned http://secunia.com/advisories/48577 Third Party Advisory Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1 Broken Link Changed Reference Type http://secunia.com/advisories/41818 No Types Assigned http://secunia.com/advisories/41818 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=142660345230545&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=142660345230545&w=2 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html Third Party Advisory Changed Reference Type http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html No Types Assigned http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html Third Party Advisory Changed Reference Type http://www.opera.com/support/search/view/944/ No Types Assigned http://www.opera.com/support/search/view/944/ Third Party Advisory Changed Reference Type http://secunia.com/advisories/37675 No Types Assigned http://secunia.com/advisories/37675 Third Party Advisory Changed Reference Type http://ubuntu.com/usn/usn-923-1 No Types Assigned http://ubuntu.com/usn/usn-923-1 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/05/5 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/05/5 Mailing List, Third Party Advisory Changed Reference Type http://secunia.com/advisories/41490 No Types Assigned http://secunia.com/advisories/41490 Third Party Advisory Changed Reference Type http://security.gentoo.org/glsa/glsa-200912-01.xml No Types Assigned http://security.gentoo.org/glsa/glsa-200912-01.xml Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/05/3 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/05/3 Mailing List, Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/522176 No Types Assigned http://www.securityfocus.com/archive/1/522176 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2010/3086 No Types Assigned http://www.vupen.com/english/advisories/2010/3086 Third Party Advisory Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html Third Party Advisory Changed Reference Type http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html No Types Assigned http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html Exploit, Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 Third Party Advisory Changed Reference Type http://secunia.com/advisories/42467 No Types Assigned http://secunia.com/advisories/42467 Third Party Advisory Changed Reference Type http://support.avaya.com/css/P8/documents/100070150 No Types Assigned http://support.avaya.com/css/P8/documents/100070150 Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/20/1 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/20/1 Mailing List, Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/3069 No Types Assigned http://www.vupen.com/english/advisories/2010/3069 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3354 No Types Assigned http://www.vupen.com/english/advisories/2009/3354 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3353 No Types Assigned http://www.vupen.com/english/advisories/2009/3353 Third Party Advisory Changed Reference Type http://secunia.com/advisories/43308 No Types Assigned http://secunia.com/advisories/43308 Third Party Advisory Changed Reference Type http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html No Types Assigned http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html Third Party Advisory Changed Reference Type http://extendedsubset.com/Renegotiating_TLS.pdf No Types Assigned http://extendedsubset.com/Renegotiating_TLS.pdf Broken Link Changed Reference Type http://secunia.com/advisories/39292 No Types Assigned http://secunia.com/advisories/39292 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/0916 No Types Assigned http://www.vupen.com/english/advisories/2010/0916 Third Party Advisory Changed Reference Type http://secunia.com/advisories/41480 No Types Assigned http://secunia.com/advisories/41480 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0167.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0167.html Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html Third Party Advisory Changed Reference Type http://support.avaya.com/css/P8/documents/100114327 No Types Assigned http://support.avaya.com/css/P8/documents/100114327 Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/515055/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/515055/100/0/threaded Third Party Advisory, VDB Entry Changed Reference Type http://openbsd.org/errata45.html#010_openssl No Types Assigned http://openbsd.org/errata45.html#010_openssl Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1793 No Types Assigned http://www.vupen.com/english/advisories/2010/1793 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0119.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0119.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1673 No Types Assigned http://www.vupen.com/english/advisories/2010/1673 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg24006386 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg24006386 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023163 No Types Assigned http://www.securitytracker.com/id?1023163 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2009/3484 No Types Assigned http://www.vupen.com/english/advisories/2009/3484 Third Party Advisory Changed Reference Type http://secunia.com/advisories/39278 No Types Assigned http://secunia.com/advisories/39278 Third Party Advisory Changed Reference Type http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES No Types Assigned http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES Broken Link Changed Reference Type http://secunia.com/advisories/39713 No Types Assigned http://secunia.com/advisories/39713 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37656 No Types Assigned http://secunia.com/advisories/37656 Third Party Advisory Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1 Broken Link Changed Reference Type http://marc.info/?l=cryptography&m=125752275331877&w=2 No Types Assigned http://marc.info/?l=cryptography&m=125752275331877&w=2 Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/44183 No Types Assigned http://secunia.com/advisories/44183 Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/06/3 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/06/3 Mailing List, Third Party Advisory Changed Reference Type http://www.us-cert.gov/cas/techalerts/TA10-287A.html US Government Resource http://www.us-cert.gov/cas/techalerts/TA10-287A.html Third Party Advisory, US Government Resource Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html Third Party Advisory Changed Reference Type http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2 No Types Assigned http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html Third Party Advisory Changed Reference Type http://kbase.redhat.com/faq/docs/DOC-20491 No Types Assigned http://kbase.redhat.com/faq/docs/DOC-20491 Third Party Advisory Changed CPE Configuration AND OR *cpe:2.3:a:apache:http_server:0.8.11:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:0.8.14:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.1.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.1.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.7:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.7:*:dev:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.8:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.9:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.11:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.12:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.13:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.14:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.15:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.16:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.17:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.18:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.19:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.20:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.22:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.23:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.24:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.25:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.26:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.27:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.28:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.29:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.30:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.31:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.32:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.33:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.34:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.35:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.36:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.37:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.38:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.39:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.65:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.68:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.99:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.9:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.28:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.28:beta:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.32:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.32:beta:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.34:beta:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.35:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.36:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.37:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.38:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.39:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.40:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.41:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.42:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.43:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.44:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.45:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.46:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.46:*:win32:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.47:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.48:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.49:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.50:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.51:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.52:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.53:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.54:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.55:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.56:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.57:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.58:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.58:*:win32:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.59:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.60:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.61:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.63:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.7:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.8:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.9:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.7:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.8:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.10:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.11:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.12:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* versions up to (including) 2.2.13 *cpe:2.3:a:gnu:gnutls:1.0.16:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.17:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.18:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.19:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.20:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.21:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.22:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.23:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.24:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.25:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.13:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.14:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.15:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.16:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.17:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.18:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.19:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.20:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.21:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.22:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.23:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.8.1a1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.9:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.10:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.11:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.9:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.10:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.11:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.12:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.13:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.14:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.15:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.16:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.17:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.18:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.19:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.9:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.10:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.11:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.4.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.4.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.4.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.5.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.8.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:* versions up to (including) 2.8.1 *cpe:2.3:a:microsoft:iis:7.0:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.0:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.2.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.3:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.3.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.3.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4.3:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.5:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.6:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.6.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.3:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.5:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.7:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.8:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.9:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.9.5:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.10:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.4:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.7:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.8:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.12:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.12.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:* versions up to (including) 3.12.2 *cpe:2.3:a:openssl:openssl:0.9.1c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.2b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.3:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.3a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.4:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5a:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5a:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:beta3:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:beta3:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6d:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6e:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6f:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6g:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6h:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6i:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6j:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6k:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6l:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6m:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta3:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta4:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta5:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta6:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7d:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7e:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7f:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7g:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7h:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7i:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7j:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7k:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7l:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7m:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8d:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8e:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8f:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8g:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions up to (including) 0.9.8h *cpe:2.3:a:openssl:openssl:1.0:*:openvms:*:*:*:*:* OR OR *cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:11:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:* Added CPE Configuration OR *cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* versions up to (including) 2.2.14 *cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:* versions up to (including) 2.8.5 *cpe:2.3:a:microsoft:iis:7.0:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:* versions up to (including) 3.12.4 *cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions up to (including) 0.9.8k *cpe:2.3:a:openssl:openssl:1.0:*:openvms:*:*:*:*:* -
CVE Modified by [email protected]
Oct. 10, 2018
Action Type Old Value New Value Removed Reference http://www.securityfocus.com/archive/1/archive/1/515055/100/0/threaded [No Types Assigned] Removed Reference http://www.securityfocus.com/archive/1/archive/1/508075/100/0/threaded [No Types Assigned] Removed Reference http://www.securityfocus.com/archive/1/archive/1/507952/100/0/threaded [No Types Assigned] Removed Reference http://www.securityfocus.com/archive/1/archive/1/508130/100/0/threaded [No Types Assigned] Removed Reference http://www.securityfocus.com/archive/1/archive/1/516397/100/0/threaded [No Types Assigned] Added Reference http://www.securityfocus.com/archive/1/516397/100/0/threaded [No Types Assigned] Added Reference http://www.securityfocus.com/archive/1/515055/100/0/threaded [No Types Assigned] Added Reference http://www.securityfocus.com/archive/1/508130/100/0/threaded [No Types Assigned] Added Reference http://www.securityfocus.com/archive/1/508075/100/0/threaded [No Types Assigned] Added Reference http://www.securityfocus.com/archive/1/507952/100/0/threaded [No Types Assigned] -
CVE Modified by [email protected]
Sep. 19, 2017
Action Type Old Value New Value Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11617 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7315 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8366 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7973 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8535 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11578 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7478 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10088 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 [No Types Assigned] -
CVE Modified by [email protected]
Aug. 17, 2017
Action Type Old Value New Value Removed Reference http://xforce.iss.net/xforce/xfdb/54158 [No Types Assigned] Added Reference https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 [No Types Assigned] -
CVE Modified by [email protected]
Aug. 23, 2016
Action Type Old Value New Value Removed Reference https://h20565.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 Added Reference http://marc.info/?l=bugtraq&m=127128920008563&w=2 Added Reference http://marc.info/?l=bugtraq&m=134254866602253&w=2 Added Reference http://marc.info/?l=bugtraq&m=127557596201693&w=2 Added Reference http://marc.info/?l=bugtraq&m=126150535619567&w=2 Added Reference http://marc.info/?l=bugtraq&m=133469267822771&w=2 -
CVE Modified by [email protected]
Aug. 20, 2016
Action Type Old Value New Value Added Reference https://h20565.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 -
CVE Modified by [email protected]
Aug. 17, 2016
Action Type Old Value New Value Added Reference https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 -
CVE Modified by [email protected]
May. 14, 2015
Action Type Old Value New Value Added Reference http://www.debian.org/security/2015/dsa-3253 -
CVE Modified by [email protected]
Mar. 24, 2015
Action Type Old Value New Value Added Reference http://marc.info/?l=bugtraq&m=142660345230545&w=2 -
CVE Modified by [email protected]
Nov. 14, 2014
Action Type Old Value New Value Added Reference http://www.openssl.org/news/secadv_20091111.txt Added Reference http://secunia.com/advisories/41818 -
Initial Analysis by [email protected]
Nov. 10, 2009
Action Type Old Value New Value
CWE - Common Weakness Enumeration
While CVE identifies
specific instances of vulnerabilities, CWE categorizes the common flaws or
weaknesses that can lead to vulnerabilities. CVE-2009-3555
is
associated with the following CWEs:
Common Attack Pattern Enumeration and Classification (CAPEC)
Common Attack Pattern Enumeration and Classification
(CAPEC)
stores attack patterns, which are descriptions of the common attributes and
approaches employed by adversaries to exploit the CVE-2009-3555
weaknesses.
Exploit Prediction
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.
3.57 }} 3.21%
score
0.91475
percentile