5.8
MEDIUM
CVE-2009-3555
Microsoft IIS TLS Plaintext Injection Vulnerability
Description
The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue.
INFO
Published Date :
Nov. 9, 2009, 5:30 p.m.
Last Modified :
Feb. 13, 2023, 2:20 a.m.
Source :
[email protected]
Remotely Exploitable :
Yes !
Impact Score :
4.9
Exploitability Score :
8.6
Public PoC/Exploit Available at Github
CVE-2009-3555 has a 25 public PoC/Exploit available at Github.
Go to the Public Exploits tab to see the list.
Affected Products
The following products are affected by CVE-2009-3555
vulnerability.
Even if cvefeed.io is aware of the exact versions of the
products
that
are
affected, the information is not represented in the table below.
References to Advisories, Solutions, and Tools
Here, you will find a curated list of external links that provide in-depth
information, practical solutions, and valuable tools related to
CVE-2009-3555.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
None
Updated: 1 month, 3 weeks ago
0 stars
0 fork
0 watcher
Born at : July 25, 2024, 12:30 p.m.
This repo has been linked 2 different CVEs too.
None
Updated: 6 months ago
0 stars
0 fork
0 watcher
Born at : March 10, 2024, 12:15 p.m.
This repo has been linked 170 different CVEs too.
find vulnerabilities in webserver
Shell
Updated: 3 weeks ago
0 stars
0 fork
0 watcher
Born at : Aug. 12, 2023, 12:57 a.m.
This repo has been linked 55 different CVEs too.
None
Updated: 1 year, 1 month ago
0 stars
0 fork
0 watcher
Born at : Aug. 9, 2023, 12:16 p.m.
This repo has been linked 170 different CVEs too.
None
Updated: 1 year, 2 months ago
0 stars
0 fork
0 watcher
Born at : June 30, 2023, 4:18 p.m.
This repo has been linked 170 different CVEs too.
None
Updated: 1 year, 4 months ago
1 stars
0 fork
0 watcher
Born at : April 10, 2023, 5:46 p.m.
This repo has been linked 170 different CVEs too.
Уязвимости и атаки на информационные системы
Updated: 7 months, 1 week ago
0 stars
0 fork
0 watcher
Born at : March 24, 2023, 8:20 a.m.
This repo has been linked 170 different CVEs too.
None
Shell
Updated: 1 week, 1 day ago
3 stars
2 fork
2 watcher
Born at : March 23, 2023, 4:32 a.m.
This repo has been linked 435 different CVEs too.
None
Updated: 1 year, 6 months ago
0 stars
2 fork
2 watcher
Born at : March 12, 2023, 3:01 a.m.
This repo has been linked 170 different CVEs too.
None
Updated: 1 week, 1 day ago
5 stars
0 fork
0 watcher
Born at : Feb. 23, 2023, 5:42 a.m.
This repo has been linked 455 different CVEs too.
None
Updated: 1 year, 7 months ago
0 stars
0 fork
0 watcher
Born at : Feb. 13, 2023, 5:42 p.m.
This repo has been linked 173 different CVEs too.
A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled.
Go
Updated: 6 months, 2 weeks ago
3 stars
1 fork
1 watcher
Born at : March 30, 2022, 3:02 p.m.
This repo has been linked 1 different CVEs too.
Pulse Secure VPN mitm Research - CVE-2020-8241, CVE-2020-8239
Python
Updated: 1 year, 9 months ago
23 stars
3 fork
3 watcher
Born at : Oct. 25, 2020, 3:58 p.m.
This repo has been linked 4 different CVEs too.
Deep dive in DataPower TLS configuration
Updated: 2 years, 8 months ago
0 stars
0 fork
0 watcher
Born at : Sept. 18, 2020, 8:59 a.m.
This repo has been linked 1 different CVEs too.
Network reconnaissance and vulnerability assessment tools.
Python
Updated: 4 years, 4 months ago
0 stars
0 fork
0 watcher
Born at : May 12, 2020, 7:39 p.m.
This repo has been linked 32 different CVEs too.
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2009-3555 vulnerability anywhere in the article.
The following table lists the changes that have been made to the
CVE-2009-3555 vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.
-
CVE Modified by [email protected]
May. 14, 2024
Action Type Old Value New Value -
CVE Modified by [email protected]
Feb. 13, 2023
Action Type Old Value New Value Changed Description CVE-2009-3555 TLS: MITM attacks via session renegotiation The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue. Removed CVSS V2 Red Hat, Inc. (AV:N/AC:M/Au:N/C:N/I:P/A:N) Removed Reference https://access.redhat.com/errata/RHSA-2009:1579 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2009:1580 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2009:1694 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0011 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0119 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0130 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0155 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0162 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0163 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0164 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0165 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0166 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0167 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0337 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0338 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0339 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0408 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0440 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0768 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0770 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0786 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0807 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0865 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0986 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2010:0987 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2011:0880 [No Types Assigned] Removed Reference https://access.redhat.com/errata/RHSA-2015:1591 [No Types Assigned] Removed Reference https://access.redhat.com/security/cve/CVE-2009-3555 [No Types Assigned] -
CVE Modified by [email protected]
Feb. 02, 2023
Action Type Old Value New Value Changed Description The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue. CVE-2009-3555 TLS: MITM attacks via session renegotiation Added CVSS V2 Red Hat, Inc. (AV:N/AC:M/Au:N/C:N/I:P/A:N) Removed Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory] Removed Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory] Removed Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory] Removed Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory] Added Reference https://access.redhat.com/errata/RHSA-2010:0339 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0337 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0338 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2009:1694 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2011:0880 [No Types Assigned] Added Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0440 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0011 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0130 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0119 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0807 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2015:1591 [No Types Assigned] Added Reference https://access.redhat.com/security/cve/CVE-2009-3555 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0865 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0986 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0987 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0155 [No Types Assigned] Added Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0166 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0167 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0164 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0165 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0162 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0163 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0770 [No Types Assigned] Added Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0786 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2009:1580 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2009:1579 [No Types Assigned] Added Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0408 [No Types Assigned] Added Reference https://access.redhat.com/errata/RHSA-2010:0768 [No Types Assigned] -
Modified Analysis by [email protected]
Aug. 04, 2022
Action Type Old Value New Value Changed Reference Type https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 No Types Assigned https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 Patch, Vendor Advisory Changed Reference Type https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory Changed Reference Type https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory Changed Reference Type https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory Changed Reference Type https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory Removed CWE NIST CWE-310 Added CWE NIST CWE-295 Added CPE Configuration OR *cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:* versions from (including) 0.1.0 up to (including) 0.8.22 -
CPE Deprecation Remap by [email protected]
Feb. 05, 2021
Action Type Old Value New Value Changed CPE Configuration OR *cpe:2.3:a:microsoft:internet_information_server:7.0:*:*:*:*:*:*:* OR *cpe:2.3:a:microsoft:internet_information_services:7.0:*:*:*:*:*:*:* -
CVE Modified by [email protected]
Feb. 13, 2020
Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E [No Types Assigned] -
CVE Modified by [email protected]
Feb. 03, 2020
Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E [No Types Assigned] -
CPE Deprecation Remap by [email protected]
Jul. 03, 2019
Action Type Old Value New Value Changed CPE Configuration OR *cpe:2.3:a:microsoft:iis:7.0:*:*:*:*:*:*:* OR *cpe:2.3:a:microsoft:internet_information_server:7.0:*:*:*:*:*:*:* -
CVE Modified by [email protected]
Mar. 25, 2019
Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E [No Types Assigned] -
CVE Modified by [email protected]
Mar. 21, 2019
Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E [No Types Assigned] -
CVE Modified by [email protected]
Oct. 12, 2018
Action Type Old Value New Value Removed Reference http://www.microsoft.com/technet/security/Bulletin/MS10-049.mspx [Patch, Vendor Advisory] Added Reference https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 [No Types Assigned] -
Modified Analysis by [email protected]
Oct. 11, 2018
Action Type Old Value New Value Changed Reference Type http://www.links.org/?p=786 No Types Assigned http://www.links.org/?p=786 Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html Third Party Advisory Changed Reference Type http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html No Types Assigned http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html Third Party Advisory Changed Reference Type http://www.links.org/?p=789 No Types Assigned http://www.links.org/?p=789 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0986.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0986.html Third Party Advisory Changed Reference Type http://extendedsubset.com/?p=8 No Types Assigned http://extendedsubset.com/?p=8 Broken Link Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/23/10 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/23/10 Mailing List, Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0786.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0786.html Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 Third Party Advisory Changed Reference Type http://www.arubanetworks.com/support/alerts/aid-020810.txt No Types Assigned http://www.arubanetworks.com/support/alerts/aid-020810.txt Broken Link Changed Reference Type http://www.links.org/?p=780 No Types Assigned http://www.links.org/?p=780 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0155.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0155.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/2745 No Types Assigned http://www.vupen.com/english/advisories/2010/2745 Third Party Advisory Changed Reference Type http://secunia.com/advisories/38687 No Types Assigned http://secunia.com/advisories/38687 Third Party Advisory Changed Reference Type http://www.microsoft.com/technet/security/Bulletin/MS10-049.mspx No Types Assigned http://www.microsoft.com/technet/security/Bulletin/MS10-049.mspx Patch, Vendor Advisory Changed Reference Type http://seclists.org/fulldisclosure/2009/Nov/139 No Types Assigned http://seclists.org/fulldisclosure/2009/Nov/139 Mailing List, Third Party Advisory Changed Reference Type http://www.openssl.org/news/secadv_20091111.txt No Types Assigned http://www.openssl.org/news/secadv_20091111.txt Third Party Advisory Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 Third Party Advisory Changed Reference Type http://security.gentoo.org/glsa/glsa-201203-22.xml No Types Assigned http://security.gentoo.org/glsa/glsa-201203-22.xml Third Party Advisory Changed Reference Type http://support.avaya.com/css/P8/documents/100114315 No Types Assigned http://support.avaya.com/css/P8/documents/100114315 Third Party Advisory Changed Reference Type http://secunia.com/advisories/41972 No Types Assigned http://secunia.com/advisories/41972 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023411 No Types Assigned http://www.securitytracker.com/id?1023411 Third Party Advisory, VDB Entry Changed Reference Type http://secunia.com/advisories/41967 No Types Assigned http://secunia.com/advisories/41967 Third Party Advisory Changed Reference Type http://security.gentoo.org/glsa/glsa-201406-32.xml No Types Assigned http://security.gentoo.org/glsa/glsa-201406-32.xml Third Party Advisory Changed Reference Type http://secunia.com/advisories/42816 No Types Assigned http://secunia.com/advisories/42816 Third Party Advisory Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2010:076 No Types Assigned http://www.mandriva.com/security/advisories?name=MDVSA-2010:076 Broken Link Changed Reference Type http://www.debian.org/security/2009/dsa-1934 No Types Assigned http://www.debian.org/security/2009/dsa-1934 Third Party Advisory Changed Reference Type http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 No Types Assigned http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 Broken Link Changed Reference Type http://secunia.com/advisories/40070 No Types Assigned http://secunia.com/advisories/40070 Third Party Advisory Changed Reference Type http://osvdb.org/62210 No Types Assigned http://osvdb.org/62210 Broken Link Changed Reference Type http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html No Types Assigned http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html Broken Link Changed Reference Type http://www.kb.cert.org/vuls/id/120541 US Government Resource http://www.kb.cert.org/vuls/id/120541 Third Party Advisory, US Government Resource Changed Reference Type http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released No Types Assigned http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released Broken Link Changed Reference Type http://secunia.com/advisories/42811 No Types Assigned http://secunia.com/advisories/42811 Third Party Advisory Changed Reference Type http://secunia.com/advisories/42377 No Types Assigned http://secunia.com/advisories/42377 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg21432298 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg21432298 Third Party Advisory Changed Reference Type http://secunia.com/advisories/42379 No Types Assigned http://secunia.com/advisories/42379 Third Party Advisory Changed Reference Type http://lists.apple.com/archives/security-announce/2010//May/msg00002.html No Types Assigned http://lists.apple.com/archives/security-announce/2010//May/msg00002.html Mailing List, Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/508075/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/508075/100/0/threaded Third Party Advisory, VDB Entry Changed Reference Type http://secunia.com/advisories/42808 No Types Assigned http://secunia.com/advisories/42808 Third Party Advisory Changed Reference Type http://sysoev.ru/nginx/patch.cve-2009-3555.txt No Types Assigned http://sysoev.ru/nginx/patch.cve-2009-3555.txt Broken Link Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2010:084 No Types Assigned http://www.mandriva.com/security/advisories?name=MDVSA-2010:084 Broken Link Changed Reference Type http://www.tombom.co.uk/blog/?p=85 No Types Assigned http://www.tombom.co.uk/blog/?p=85 Broken Link Changed Reference Type http://secunia.com/advisories/40866 No Types Assigned http://secunia.com/advisories/40866 Third Party Advisory Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2010:089 No Types Assigned http://www.mandriva.com/security/advisories?name=MDVSA-2010:089 Broken Link Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0338.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0338.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/40747 No Types Assigned http://secunia.com/advisories/40747 Third Party Advisory Changed Reference Type https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html No Types Assigned https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/39632 No Types Assigned http://secunia.com/advisories/39632 Third Party Advisory Changed Reference Type http://www.ubuntu.com/usn/USN-927-5 No Types Assigned http://www.ubuntu.com/usn/USN-927-5 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1639 No Types Assigned http://www.vupen.com/english/advisories/2010/1639 Third Party Advisory Changed Reference Type http://www.ubuntu.com/usn/USN-927-4 No Types Assigned http://www.ubuntu.com/usn/USN-927-4 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3165 Vendor Advisory http://www.vupen.com/english/advisories/2009/3165 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37453 No Types Assigned http://secunia.com/advisories/37453 Third Party Advisory Changed Reference Type http://www.vmware.com/security/advisories/VMSA-2010-0019.html No Types Assigned http://www.vmware.com/security/advisories/VMSA-2010-0019.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3164 Vendor Advisory http://www.vupen.com/english/advisories/2009/3164 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html Third Party Advisory Changed Reference Type http://www.ubuntu.com/usn/USN-927-1 No Types Assigned http://www.ubuntu.com/usn/USN-927-1 Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0770.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0770.html Third Party Advisory Changed Reference Type http://openbsd.org/errata46.html#004_openssl No Types Assigned http://openbsd.org/errata46.html#004_openssl Third Party Advisory Changed Reference Type http://support.avaya.com/css/P8/documents/100081611 No Types Assigned http://support.avaya.com/css/P8/documents/100081611 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2011/0086 No Types Assigned http://www.vupen.com/english/advisories/2011/0086 Third Party Advisory Changed Reference Type http://www.debian.org/security/2011/dsa-2141 No Types Assigned http://www.debian.org/security/2011/dsa-2141 Third Party Advisory Changed Reference Type http://www.debian.org/security/2015/dsa-3253 No Types Assigned http://www.debian.org/security/2015/dsa-3253 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/3126 No Types Assigned http://www.vupen.com/english/advisories/2010/3126 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37604 No Types Assigned http://secunia.com/advisories/37604 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=130497311408250&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=130497311408250&w=2 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0165.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0165.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/37292 Vendor Advisory http://secunia.com/advisories/37292 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37291 Vendor Advisory http://secunia.com/advisories/37291 Third Party Advisory Changed Reference Type http://secunia.com/advisories/38020 No Types Assigned http://secunia.com/advisories/38020 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1191 No Types Assigned http://www.vupen.com/english/advisories/2010/1191 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023428 No Types Assigned http://www.securitytracker.com/id?1023428 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023427 No Types Assigned http://www.securitytracker.com/id?1023427 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023426 No Types Assigned http://www.securitytracker.com/id?1023426 Third Party Advisory, VDB Entry Changed Reference Type https://kb.bluecoat.com/index?page=content&id=SA50 No Types Assigned https://kb.bluecoat.com/index?page=content&id=SA50 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/0086 No Types Assigned http://www.vupen.com/english/advisories/2010/0086 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1054 No Types Assigned http://www.vupen.com/english/advisories/2010/1054 Third Party Advisory Changed Reference Type http://www.betanews.com/article/1257452450 No Types Assigned http://www.betanews.com/article/1257452450 Third Party Advisory Changed Reference Type http://secunia.com/advisories/38003 No Types Assigned http://secunia.com/advisories/38003 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37399 No Types Assigned http://secunia.com/advisories/37399 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0865.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0865.html Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html Third Party Advisory Changed Reference Type http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 No Types Assigned http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 Broken Link Changed Reference Type http://secunia.com/advisories/39461 No Types Assigned http://secunia.com/advisories/39461 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=126150535619567&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=126150535619567&w=2 Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 Third Party Advisory Changed Reference Type http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html No Types Assigned http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html Broken Link Changed Reference Type http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml No Types Assigned http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml Third Party Advisory Changed Reference Type https://bugzilla.redhat.com/show_bug.cgi?id=533125 No Types Assigned https://bugzilla.redhat.com/show_bug.cgi?id=533125 Issue Tracking, Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023215 No Types Assigned http://www.securitytracker.com/id?1023215 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023214 No Types Assigned http://www.securitytracker.com/id?1023214 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023213 No Types Assigned http://www.securitytracker.com/id?1023213 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023212 No Types Assigned http://www.securitytracker.com/id?1023212 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023211 No Types Assigned http://www.securitytracker.com/id?1023211 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023210 No Types Assigned http://www.securitytracker.com/id?1023210 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2010/2010 No Types Assigned http://www.vupen.com/english/advisories/2010/2010 Third Party Advisory Changed Reference Type http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html No Types Assigned http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html Third Party Advisory Changed Reference Type http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446 No Types Assigned http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446 Third Party Advisory Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1 Broken Link Changed Reference Type http://www.vupen.com/english/advisories/2010/0994 No Types Assigned http://www.vupen.com/english/advisories/2010/0994 Third Party Advisory Changed Reference Type http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 No Types Assigned http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 Third Party Advisory Changed Reference Type http://securitytracker.com/id?1023148 No Types Assigned http://securitytracker.com/id?1023148 Third Party Advisory, VDB Entry Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=133469267822771&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=133469267822771&w=2 Third Party Advisory Changed Reference Type http://secunia.com/advisories/38241 No Types Assigned http://secunia.com/advisories/38241 Third Party Advisory Changed Reference Type http://support.apple.com/kb/HT4004 No Types Assigned http://support.apple.com/kb/HT4004 Third Party Advisory Changed Reference Type https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt No Types Assigned https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt Third Party Advisory Changed Reference Type http://secunia.com/advisories/38484 No Types Assigned http://secunia.com/advisories/38484 Third Party Advisory Changed Reference Type http://secunia.com/advisories/42733 No Types Assigned http://secunia.com/advisories/42733 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2011/0033 No Types Assigned http://www.vupen.com/english/advisories/2011/0033 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2011/0032 No Types Assigned http://www.vupen.com/english/advisories/2011/0032 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0337.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0337.html Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023209 No Types Assigned http://www.securitytracker.com/id?1023209 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023208 No Types Assigned http://www.securitytracker.com/id?1023208 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023207 No Types Assigned http://www.securitytracker.com/id?1023207 Third Party Advisory, VDB Entry Changed Reference Type https://bugzilla.mozilla.org/show_bug.cgi?id=545755 No Types Assigned https://bugzilla.mozilla.org/show_bug.cgi?id=545755 Issue Tracking, Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023206 No Types Assigned http://www.securitytracker.com/id?1023206 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023205 No Types Assigned http://www.securitytracker.com/id?1023205 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023204 No Types Assigned http://www.securitytracker.com/id?1023204 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2010/0982 No Types Assigned http://www.vupen.com/english/advisories/2010/0982 Third Party Advisory Changed Reference Type http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c No Types Assigned http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c Broken Link Changed Reference Type http://www.vupen.com/english/advisories/2009/3521 No Types Assigned http://www.vupen.com/english/advisories/2009/3521 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/0748 No Types Assigned http://www.vupen.com/english/advisories/2010/0748 Third Party Advisory Changed Reference Type http://www.vmware.com/security/advisories/VMSA-2011-0003.html No Types Assigned http://www.vmware.com/security/advisories/VMSA-2011-0003.html Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0768.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0768.html Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=127128920008563&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=127128920008563&w=2 Third Party Advisory Changed Reference Type http://secunia.com/advisories/39317 No Types Assigned http://secunia.com/advisories/39317 Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/516397/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/516397/100/0/threaded Third Party Advisory, VDB Entry Changed Reference Type http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html No Types Assigned http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=132077688910227&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=132077688910227&w=2 Third Party Advisory Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html Third Party Advisory Changed Reference Type http://blogs.iss.net/archive/sslmitmiscsrf.html No Types Assigned http://blogs.iss.net/archive/sslmitmiscsrf.html Broken Link Changed Reference Type http://secunia.com/advisories/37383 No Types Assigned http://secunia.com/advisories/37383 Third Party Advisory Changed Reference Type http://secunia.com/advisories/40545 No Types Assigned http://secunia.com/advisories/40545 Third Party Advisory Changed Reference Type http://secunia.com/advisories/42724 No Types Assigned http://secunia.com/advisories/42724 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2011-0880.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2011-0880.html Third Party Advisory Changed Reference Type https://bugzilla.mozilla.org/show_bug.cgi?id=526689 No Types Assigned https://bugzilla.mozilla.org/show_bug.cgi?id=526689 Issue Tracking, Third Party Advisory Changed Reference Type http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041 No Types Assigned http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041 Broken Link Changed Reference Type http://www.openoffice.org/security/cves/CVE-2009-3555.html No Types Assigned http://www.openoffice.org/security/cves/CVE-2009-3555.html Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/0173 No Types Assigned http://www.vupen.com/english/advisories/2010/0173 Third Party Advisory Changed Reference Type http://secunia.com/advisories/38056 No Types Assigned http://secunia.com/advisories/38056 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37640 No Types Assigned http://secunia.com/advisories/37640 Third Party Advisory Changed Reference Type http://www.ingate.com/Relnote.php?ver=481 No Types Assigned http://www.ingate.com/Relnote.php?ver=481 Third Party Advisory Changed Reference Type http://www.ubuntu.com/usn/USN-1010-1 No Types Assigned http://www.ubuntu.com/usn/USN-1010-1 Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=127419602507642&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=127419602507642&w=2 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0987.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0987.html Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html Third Party Advisory Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1 Broken Link Changed Reference Type https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 No Types Assigned https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 Third Party Advisory Changed Reference Type http://www.us-cert.gov/cas/techalerts/TA10-222A.html US Government Resource http://www.us-cert.gov/cas/techalerts/TA10-222A.html Third Party Advisory, US Government Resource Changed Reference Type http://clicky.me/tlsvuln No Types Assigned http://clicky.me/tlsvuln Exploit, Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=134254866602253&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=134254866602253&w=2 Third Party Advisory Changed Reference Type http://support.apple.com/kb/HT4170 No Types Assigned http://support.apple.com/kb/HT4170 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023224 No Types Assigned http://www.securitytracker.com/id?1023224 Third Party Advisory, VDB Entry Changed Reference Type http://secunia.com/advisories/39819 No Types Assigned http://secunia.com/advisories/39819 Third Party Advisory Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3587 No Types Assigned http://www.vupen.com/english/advisories/2009/3587 Third Party Advisory Changed Reference Type http://secunia.com/advisories/39136 No Types Assigned http://secunia.com/advisories/39136 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3220 Vendor Advisory http://www.vupen.com/english/advisories/2009/3220 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848 Third Party Advisory Changed Reference Type http://support.apple.com/kb/HT4171 No Types Assigned http://support.apple.com/kb/HT4171 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0339.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0339.html Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/508130/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/508130/100/0/threaded Third Party Advisory, VDB Entry Changed Reference Type http://osvdb.org/60521 No Types Assigned http://osvdb.org/60521 Broken Link Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/07/3 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/07/3 Mailing List, Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/0848 No Types Assigned http://www.vupen.com/english/advisories/2010/0848 Third Party Advisory Changed Reference Type http://lists.apple.com/archives/security-announce/2010//May/msg00001.html No Types Assigned http://lists.apple.com/archives/security-announce/2010//May/msg00001.html Mailing List, Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023219 No Types Assigned http://www.securitytracker.com/id?1023219 Third Party Advisory, VDB Entry Changed Reference Type http://www.securityfocus.com/bid/36935 Exploit, Patch http://www.securityfocus.com/bid/36935 Exploit, Patch, Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023218 No Types Assigned http://www.securitytracker.com/id?1023218 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023217 No Types Assigned http://www.securitytracker.com/id?1023217 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023216 No Types Assigned http://www.securitytracker.com/id?1023216 Third Party Advisory, VDB Entry Changed Reference Type http://secunia.com/advisories/37504 No Types Assigned http://secunia.com/advisories/37504 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1024789 No Types Assigned http://www.securitytracker.com/id?1024789 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2009/3313 No Types Assigned http://www.vupen.com/english/advisories/2009/3313 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3310 No Types Assigned http://www.vupen.com/english/advisories/2009/3310 Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 Third Party Advisory Changed Reference Type http://www.opera.com/docs/changelogs/unix/1060/ No Types Assigned http://www.opera.com/docs/changelogs/unix/1060/ Third Party Advisory Changed Reference Type http://secunia.com/advisories/39127 No Types Assigned http://secunia.com/advisories/39127 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37501 No Types Assigned http://secunia.com/advisories/37501 Third Party Advisory Changed Reference Type http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html No Types Assigned http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html Third Party Advisory Changed Reference Type https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 No Types Assigned https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 Third Party Advisory, VDB Entry Changed Reference Type http://osvdb.org/65202 No Types Assigned http://osvdb.org/65202 Broken Link Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0130.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0130.html Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/507952/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/507952/100/0/threaded Third Party Advisory, VDB Entry Changed Reference Type http://www.mozilla.org/security/announce/2010/mfsa2010-22.html No Types Assigned http://www.mozilla.org/security/announce/2010/mfsa2010-22.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/44954 No Types Assigned http://secunia.com/advisories/44954 Third Party Advisory Changed Reference Type http://www.ietf.org/mail-archive/web/tls/current/msg03928.html No Types Assigned http://www.ietf.org/mail-archive/web/tls/current/msg03928.html Third Party Advisory Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html Third Party Advisory Changed Reference Type http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html No Types Assigned http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0807.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0807.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3205 Vendor Advisory http://www.vupen.com/english/advisories/2009/3205 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37859 No Types Assigned http://secunia.com/advisories/37859 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023243 No Types Assigned http://www.securitytracker.com/id?1023243 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2010/1350 No Types Assigned http://www.vupen.com/english/advisories/2010/1350 Third Party Advisory Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1 Broken Link Changed Reference Type http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html No Types Assigned http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html Mailing List, Third Party Advisory Changed Reference Type http://secunia.com/advisories/39242 No Types Assigned http://secunia.com/advisories/39242 Third Party Advisory Changed Reference Type http://support.citrix.com/article/CTX123359 No Types Assigned http://support.citrix.com/article/CTX123359 Third Party Advisory Changed Reference Type http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html No Types Assigned http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/39243 No Types Assigned http://secunia.com/advisories/39243 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg21426108 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg21426108 Third Party Advisory Changed Reference Type http://secunia.com/advisories/39628 No Types Assigned http://secunia.com/advisories/39628 Third Party Advisory Changed Reference Type http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only No Types Assigned http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023275 No Types Assigned http://www.securitytracker.com/id?1023275 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023274 No Types Assigned http://www.securitytracker.com/id?1023274 Third Party Advisory, VDB Entry Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/37320 Vendor Advisory http://secunia.com/advisories/37320 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023273 No Types Assigned http://www.securitytracker.com/id?1023273 Third Party Advisory, VDB Entry Changed Reference Type http://secunia.com/advisories/39500 No Types Assigned http://secunia.com/advisories/39500 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023272 No Types Assigned http://www.securitytracker.com/id?1023272 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023271 No Types Assigned http://www.securitytracker.com/id?1023271 Third Party Advisory, VDB Entry Changed Reference Type http://www.securitytracker.com/id?1023270 No Types Assigned http://www.securitytracker.com/id?1023270 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2010/0933 No Types Assigned http://www.vupen.com/english/advisories/2010/0933 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1107 No Types Assigned http://www.vupen.com/english/advisories/2010/1107 Third Party Advisory Changed Reference Type http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during No Types Assigned http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during Third Party Advisory Changed Reference Type http://wiki.rpath.com/Advisories:rPSA-2009-0155 No Types Assigned http://wiki.rpath.com/Advisories:rPSA-2009-0155 Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=127557596201693&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=127557596201693&w=2 Third Party Advisory Changed Reference Type http://osvdb.org/60972 No Types Assigned http://osvdb.org/60972 Broken Link Changed Reference Type http://secunia.com/advisories/38781 No Types Assigned http://secunia.com/advisories/38781 Third Party Advisory Changed Reference Type http://www.ietf.org/mail-archive/web/tls/current/msg03948.html No Types Assigned http://www.ietf.org/mail-archive/web/tls/current/msg03948.html Third Party Advisory Changed Reference Type http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html No Types Assigned http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg24025312 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg24025312 Third Party Advisory Changed Reference Type http://secunia.com/advisories/48577 No Types Assigned http://secunia.com/advisories/48577 Third Party Advisory Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1 Broken Link Changed Reference Type http://secunia.com/advisories/41818 No Types Assigned http://secunia.com/advisories/41818 Third Party Advisory Changed Reference Type http://marc.info/?l=bugtraq&m=142660345230545&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=142660345230545&w=2 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html Third Party Advisory Changed Reference Type http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html No Types Assigned http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html Third Party Advisory Changed Reference Type http://www.opera.com/support/search/view/944/ No Types Assigned http://www.opera.com/support/search/view/944/ Third Party Advisory Changed Reference Type http://secunia.com/advisories/37675 No Types Assigned http://secunia.com/advisories/37675 Third Party Advisory Changed Reference Type http://ubuntu.com/usn/usn-923-1 No Types Assigned http://ubuntu.com/usn/usn-923-1 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/05/5 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/05/5 Mailing List, Third Party Advisory Changed Reference Type http://secunia.com/advisories/41490 No Types Assigned http://secunia.com/advisories/41490 Third Party Advisory Changed Reference Type http://security.gentoo.org/glsa/glsa-200912-01.xml No Types Assigned http://security.gentoo.org/glsa/glsa-200912-01.xml Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/05/3 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/05/3 Mailing List, Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/522176 No Types Assigned http://www.securityfocus.com/archive/1/522176 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2010/3086 No Types Assigned http://www.vupen.com/english/advisories/2010/3086 Third Party Advisory Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html Third Party Advisory Changed Reference Type http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html No Types Assigned http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html Exploit, Third Party Advisory Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 Third Party Advisory Changed Reference Type http://secunia.com/advisories/42467 No Types Assigned http://secunia.com/advisories/42467 Third Party Advisory Changed Reference Type http://support.avaya.com/css/P8/documents/100070150 No Types Assigned http://support.avaya.com/css/P8/documents/100070150 Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/20/1 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/20/1 Mailing List, Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/3069 No Types Assigned http://www.vupen.com/english/advisories/2010/3069 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3354 No Types Assigned http://www.vupen.com/english/advisories/2009/3354 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2009/3353 No Types Assigned http://www.vupen.com/english/advisories/2009/3353 Third Party Advisory Changed Reference Type http://secunia.com/advisories/43308 No Types Assigned http://secunia.com/advisories/43308 Third Party Advisory Changed Reference Type http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html No Types Assigned http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html Third Party Advisory Changed Reference Type http://extendedsubset.com/Renegotiating_TLS.pdf No Types Assigned http://extendedsubset.com/Renegotiating_TLS.pdf Broken Link Changed Reference Type http://secunia.com/advisories/39292 No Types Assigned http://secunia.com/advisories/39292 Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/0916 No Types Assigned http://www.vupen.com/english/advisories/2010/0916 Third Party Advisory Changed Reference Type http://secunia.com/advisories/41480 No Types Assigned http://secunia.com/advisories/41480 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0167.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0167.html Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html Third Party Advisory Changed Reference Type http://support.avaya.com/css/P8/documents/100114327 No Types Assigned http://support.avaya.com/css/P8/documents/100114327 Third Party Advisory Changed Reference Type http://www.securityfocus.com/archive/1/515055/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/515055/100/0/threaded Third Party Advisory, VDB Entry Changed Reference Type http://openbsd.org/errata45.html#010_openssl No Types Assigned http://openbsd.org/errata45.html#010_openssl Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1793 No Types Assigned http://www.vupen.com/english/advisories/2010/1793 Third Party Advisory Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0119.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0119.html Third Party Advisory Changed Reference Type http://www.vupen.com/english/advisories/2010/1673 No Types Assigned http://www.vupen.com/english/advisories/2010/1673 Third Party Advisory Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg24006386 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg24006386 Third Party Advisory Changed Reference Type http://www.securitytracker.com/id?1023163 No Types Assigned http://www.securitytracker.com/id?1023163 Third Party Advisory, VDB Entry Changed Reference Type http://www.vupen.com/english/advisories/2009/3484 No Types Assigned http://www.vupen.com/english/advisories/2009/3484 Third Party Advisory Changed Reference Type http://secunia.com/advisories/39278 No Types Assigned http://secunia.com/advisories/39278 Third Party Advisory Changed Reference Type http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES No Types Assigned http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES Broken Link Changed Reference Type http://secunia.com/advisories/39713 No Types Assigned http://secunia.com/advisories/39713 Third Party Advisory Changed Reference Type http://secunia.com/advisories/37656 No Types Assigned http://secunia.com/advisories/37656 Third Party Advisory Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1 Broken Link Changed Reference Type http://marc.info/?l=cryptography&m=125752275331877&w=2 No Types Assigned http://marc.info/?l=cryptography&m=125752275331877&w=2 Third Party Advisory Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html Third Party Advisory Changed Reference Type http://secunia.com/advisories/44183 No Types Assigned http://secunia.com/advisories/44183 Third Party Advisory Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/06/3 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/06/3 Mailing List, Third Party Advisory Changed Reference Type http://www.us-cert.gov/cas/techalerts/TA10-287A.html US Government Resource http://www.us-cert.gov/cas/techalerts/TA10-287A.html Third Party Advisory, US Government Resource Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html Third Party Advisory Changed Reference Type http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2 No Types Assigned http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2 Third Party Advisory Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html Third Party Advisory Changed Reference Type http://kbase.redhat.com/faq/docs/DOC-20491 No Types Assigned http://kbase.redhat.com/faq/docs/DOC-20491 Third Party Advisory Changed CPE Configuration AND OR *cpe:2.3:a:apache:http_server:0.8.11:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:0.8.14:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.1.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.1.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.7:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.7:*:dev:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.8:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.9:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.11:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.12:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.13:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.14:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.15:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.16:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.17:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.18:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.19:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.20:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.22:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.23:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.24:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.25:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.26:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.27:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.28:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.29:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.30:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.31:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.32:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.33:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.34:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.35:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.36:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.37:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.38:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.39:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.65:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.68:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.99:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.9:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.28:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.28:beta:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.32:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.32:beta:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.34:beta:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.35:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.36:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.37:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.38:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.39:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.40:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.41:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.42:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.43:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.44:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.45:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.46:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.46:*:win32:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.47:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.48:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.49:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.50:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.51:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.52:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.53:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.54:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.55:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.56:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.57:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.58:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.58:*:win32:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.59:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.60:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.61:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.63:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.7:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.8:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.9:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.7:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.8:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.10:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.11:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.12:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* versions up to (including) 2.2.13 *cpe:2.3:a:gnu:gnutls:1.0.16:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.17:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.18:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.19:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.20:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.21:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.22:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.23:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.24:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.25:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.13:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.14:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.15:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.16:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.17:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.18:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.19:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.20:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.21:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.22:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.23:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.8.1a1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.9:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.10:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.11:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.9:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.10:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.11:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.12:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.13:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.14:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.15:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.16:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.17:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.18:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.19:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.9:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.10:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.11:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.4.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.4.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.4.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.5.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.8.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:* versions up to (including) 2.8.1 *cpe:2.3:a:microsoft:iis:7.0:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.0:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.2.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.3:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.3.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.3.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4.3:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.5:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.6:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.6.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.3:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.5:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.7:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.8:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.9:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.9.5:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.10:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.4:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.7:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.8:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.12:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.12.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:* versions up to (including) 3.12.2 *cpe:2.3:a:openssl:openssl:0.9.1c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.2b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.3:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.3a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.4:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5a:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5a:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:beta3:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:beta3:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6d:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6e:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6f:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6g:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6h:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6i:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6j:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6k:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6l:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6m:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta3:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta4:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta5:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta6:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7d:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7e:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7f:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7g:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7h:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7i:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7j:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7k:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7l:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7m:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8d:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8e:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8f:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8g:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions up to (including) 0.9.8h *cpe:2.3:a:openssl:openssl:1.0:*:openvms:*:*:*:*:* OR OR *cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:11:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:* Added CPE Configuration OR *cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* versions up to (including) 2.2.14 *cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:* versions up to (including) 2.8.5 *cpe:2.3:a:microsoft:iis:7.0:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:* versions up to (including) 3.12.4 *cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions up to (including) 0.9.8k *cpe:2.3:a:openssl:openssl:1.0:*:openvms:*:*:*:*:* -
CVE Modified by [email protected]
Oct. 10, 2018
Action Type Old Value New Value Removed Reference http://www.securityfocus.com/archive/1/archive/1/515055/100/0/threaded [No Types Assigned] Removed Reference http://www.securityfocus.com/archive/1/archive/1/508075/100/0/threaded [No Types Assigned] Removed Reference http://www.securityfocus.com/archive/1/archive/1/507952/100/0/threaded [No Types Assigned] Removed Reference http://www.securityfocus.com/archive/1/archive/1/508130/100/0/threaded [No Types Assigned] Removed Reference http://www.securityfocus.com/archive/1/archive/1/516397/100/0/threaded [No Types Assigned] Added Reference http://www.securityfocus.com/archive/1/516397/100/0/threaded [No Types Assigned] Added Reference http://www.securityfocus.com/archive/1/515055/100/0/threaded [No Types Assigned] Added Reference http://www.securityfocus.com/archive/1/508130/100/0/threaded [No Types Assigned] Added Reference http://www.securityfocus.com/archive/1/508075/100/0/threaded [No Types Assigned] Added Reference http://www.securityfocus.com/archive/1/507952/100/0/threaded [No Types Assigned] -
CVE Modified by [email protected]
Sep. 19, 2017
Action Type Old Value New Value Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11617 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7315 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8366 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7973 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8535 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11578 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7478 [No Types Assigned] Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10088 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 [No Types Assigned] Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 [No Types Assigned] -
CVE Modified by [email protected]
Aug. 17, 2017
Action Type Old Value New Value Removed Reference http://xforce.iss.net/xforce/xfdb/54158 [No Types Assigned] Added Reference https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 [No Types Assigned] -
CVE Modified by [email protected]
Aug. 23, 2016
Action Type Old Value New Value Removed Reference https://h20565.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 Added Reference http://marc.info/?l=bugtraq&m=127128920008563&w=2 Added Reference http://marc.info/?l=bugtraq&m=134254866602253&w=2 Added Reference http://marc.info/?l=bugtraq&m=127557596201693&w=2 Added Reference http://marc.info/?l=bugtraq&m=126150535619567&w=2 Added Reference http://marc.info/?l=bugtraq&m=133469267822771&w=2 -
CVE Modified by [email protected]
Aug. 20, 2016
Action Type Old Value New Value Added Reference https://h20565.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 -
CVE Modified by [email protected]
Aug. 17, 2016
Action Type Old Value New Value Added Reference https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 -
CVE Modified by [email protected]
May. 14, 2015
Action Type Old Value New Value Added Reference http://www.debian.org/security/2015/dsa-3253 -
CVE Modified by [email protected]
Mar. 24, 2015
Action Type Old Value New Value Added Reference http://marc.info/?l=bugtraq&m=142660345230545&w=2 -
CVE Modified by [email protected]
Nov. 14, 2014
Action Type Old Value New Value Added Reference http://www.openssl.org/news/secadv_20091111.txt Added Reference http://secunia.com/advisories/41818 -
Initial Analysis by [email protected]
Nov. 10, 2009
Action Type Old Value New Value
EPSS is a daily estimate of the probability of exploitation activity
being observed over the next 30 days. Following chart shows the EPSS
score history of the vulnerability.
CWE - Common Weakness Enumeration
While CVE identifies
specific instances of vulnerabilities, CWE categorizes the common flaws or
weaknesses that can lead to vulnerabilities. CVE-2009-3555 is
associated with the following CWEs:
Common Attack Pattern Enumeration and Classification (CAPEC)
Common Attack Pattern Enumeration and Classification
(CAPEC)
stores attack patterns, which are descriptions of the common attributes and
approaches employed by adversaries to exploit the CVE-2009-3555
weaknesses.
Exploit Prediction
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.
0.36 }} 0.07%
score
0.72609
percentile
CVSS2 - Vulnerability Scoring System
Access Vector
Access Complexity
Authentication
Confidentiality
Integrity
Availability