5.8
MEDIUM
CVE-2009-3555
Microsoft IIS TLS Plaintext Injection Vulnerability
Description

The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue.

INFO

Published Date :

Nov. 9, 2009, 5:30 p.m.

Last Modified :

Nov. 21, 2024, 1:07 a.m.

Remotely Exploitable :

Yes !

Impact Score :

4.9

Exploitability Score :

8.6
Public PoC/Exploit Available at Github

CVE-2009-3555 has a 25 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

Affected Products

The following products are affected by CVE-2009-3555 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Apache http_server
2 Apache tomcat
1 Canonical ubuntu_linux
1 Fedoraproject fedora
1 Debian debian_linux
1 Openssl openssl
1 Gnu gnutls
1 F5 nginx
1 Mozilla nss
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2009-3555.

URL Resource
http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html Broken Link
http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html Third Party Advisory
http://blogs.iss.net/archive/sslmitmiscsrf.html Broken Link
http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during Third Party Advisory
http://clicky.me/tlsvuln Exploit Third Party Advisory
http://extendedsubset.com/?p=8 Broken Link
http://extendedsubset.com/Renegotiating_TLS.pdf Broken Link
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 Broken Link
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 Broken Link
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041 Broken Link
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 Broken Link
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 Broken Link
http://kbase.redhat.com/faq/docs/DOC-20491 Third Party Advisory
http://lists.apple.com/archives/security-announce/2010//May/msg00001.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2010//May/msg00002.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html Mailing List Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html Third Party Advisory
http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html Third Party Advisory
http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=126150535619567&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=126150535619567&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127128920008563&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127128920008563&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127419602507642&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127419602507642&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127557596201693&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127557596201693&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=130497311408250&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=130497311408250&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=132077688910227&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=132077688910227&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=133469267822771&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=133469267822771&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=134254866602253&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=142660345230545&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=142660345230545&w=2 Third Party Advisory
http://marc.info/?l=cryptography&m=125752275331877&w=2 Third Party Advisory
http://openbsd.org/errata45.html#010_openssl Third Party Advisory
http://openbsd.org/errata46.html#004_openssl Third Party Advisory
http://osvdb.org/60521 Broken Link
http://osvdb.org/60972 Broken Link
http://osvdb.org/62210 Broken Link
http://osvdb.org/65202 Broken Link
http://seclists.org/fulldisclosure/2009/Nov/139 Mailing List Third Party Advisory
http://secunia.com/advisories/37291 Third Party Advisory
http://secunia.com/advisories/37292 Third Party Advisory
http://secunia.com/advisories/37320 Third Party Advisory
http://secunia.com/advisories/37383 Third Party Advisory
http://secunia.com/advisories/37399 Third Party Advisory
http://secunia.com/advisories/37453 Third Party Advisory
http://secunia.com/advisories/37501 Third Party Advisory
http://secunia.com/advisories/37504 Third Party Advisory
http://secunia.com/advisories/37604 Third Party Advisory
http://secunia.com/advisories/37640 Third Party Advisory
http://secunia.com/advisories/37656 Third Party Advisory
http://secunia.com/advisories/37675 Third Party Advisory
http://secunia.com/advisories/37859 Third Party Advisory
http://secunia.com/advisories/38003 Third Party Advisory
http://secunia.com/advisories/38020 Third Party Advisory
http://secunia.com/advisories/38056 Third Party Advisory
http://secunia.com/advisories/38241 Third Party Advisory
http://secunia.com/advisories/38484 Third Party Advisory
http://secunia.com/advisories/38687 Third Party Advisory
http://secunia.com/advisories/38781 Third Party Advisory
http://secunia.com/advisories/39127 Third Party Advisory
http://secunia.com/advisories/39136 Third Party Advisory
http://secunia.com/advisories/39242 Third Party Advisory
http://secunia.com/advisories/39243 Third Party Advisory
http://secunia.com/advisories/39278 Third Party Advisory
http://secunia.com/advisories/39292 Third Party Advisory
http://secunia.com/advisories/39317 Third Party Advisory
http://secunia.com/advisories/39461 Third Party Advisory
http://secunia.com/advisories/39500 Third Party Advisory
http://secunia.com/advisories/39628 Third Party Advisory
http://secunia.com/advisories/39632 Third Party Advisory
http://secunia.com/advisories/39713 Third Party Advisory
http://secunia.com/advisories/39819 Third Party Advisory
http://secunia.com/advisories/40070 Third Party Advisory
http://secunia.com/advisories/40545 Third Party Advisory
http://secunia.com/advisories/40747 Third Party Advisory
http://secunia.com/advisories/40866 Third Party Advisory
http://secunia.com/advisories/41480 Third Party Advisory
http://secunia.com/advisories/41490 Third Party Advisory
http://secunia.com/advisories/41818 Third Party Advisory
http://secunia.com/advisories/41967 Third Party Advisory
http://secunia.com/advisories/41972 Third Party Advisory
http://secunia.com/advisories/42377 Third Party Advisory
http://secunia.com/advisories/42379 Third Party Advisory
http://secunia.com/advisories/42467 Third Party Advisory
http://secunia.com/advisories/42724 Third Party Advisory
http://secunia.com/advisories/42733 Third Party Advisory
http://secunia.com/advisories/42808 Third Party Advisory
http://secunia.com/advisories/42811 Third Party Advisory
http://secunia.com/advisories/42816 Third Party Advisory
http://secunia.com/advisories/43308 Third Party Advisory
http://secunia.com/advisories/44183 Third Party Advisory
http://secunia.com/advisories/44954 Third Party Advisory
http://secunia.com/advisories/48577 Third Party Advisory
http://security.gentoo.org/glsa/glsa-200912-01.xml Third Party Advisory
http://security.gentoo.org/glsa/glsa-201203-22.xml Third Party Advisory
http://security.gentoo.org/glsa/glsa-201406-32.xml Third Party Advisory
http://securitytracker.com/id?1023148 Third Party Advisory VDB Entry
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446 Third Party Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1 Broken Link
http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1 Broken Link
http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1 Broken Link
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1 Broken Link
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1 Broken Link
http://support.apple.com/kb/HT4004 Third Party Advisory
http://support.apple.com/kb/HT4170 Third Party Advisory
http://support.apple.com/kb/HT4171 Third Party Advisory
http://support.avaya.com/css/P8/documents/100070150 Third Party Advisory
http://support.avaya.com/css/P8/documents/100081611 Third Party Advisory
http://support.avaya.com/css/P8/documents/100114315 Third Party Advisory
http://support.avaya.com/css/P8/documents/100114327 Third Party Advisory
http://support.citrix.com/article/CTX123359 Third Party Advisory
http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES Broken Link
http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released Broken Link
http://sysoev.ru/nginx/patch.cve-2009-3555.txt Broken Link
http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html Broken Link
http://ubuntu.com/usn/usn-923-1 Third Party Advisory
http://wiki.rpath.com/Advisories:rPSA-2009-0155 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21426108 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21432298 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg24006386 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg24025312 Third Party Advisory
http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only Third Party Advisory
http://www.arubanetworks.com/support/alerts/aid-020810.txt Broken Link
http://www.betanews.com/article/1257452450 Third Party Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml Third Party Advisory
http://www.debian.org/security/2009/dsa-1934 Third Party Advisory
http://www.debian.org/security/2011/dsa-2141 Third Party Advisory
http://www.debian.org/security/2015/dsa-3253 Third Party Advisory
http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html Third Party Advisory
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html Third Party Advisory
http://www.ietf.org/mail-archive/web/tls/current/msg03928.html Third Party Advisory
http://www.ietf.org/mail-archive/web/tls/current/msg03948.html Third Party Advisory
http://www.ingate.com/Relnote.php?ver=481 Third Party Advisory
http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 Third Party Advisory
http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 Third Party Advisory
http://www.kb.cert.org/vuls/id/120541 Third Party Advisory US Government Resource
http://www.links.org/?p=780 Third Party Advisory
http://www.links.org/?p=786 Third Party Advisory
http://www.links.org/?p=789 Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2010:076 Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2010:084 Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2010:089 Broken Link
http://www.mozilla.org/security/announce/2010/mfsa2010-22.html Third Party Advisory
http://www.openoffice.org/security/cves/CVE-2009-3555.html Third Party Advisory
http://www.openssl.org/news/secadv_20091111.txt Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/05/3 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/05/5 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/06/3 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/07/3 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/20/1 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/23/10 Mailing List Third Party Advisory
http://www.opera.com/docs/changelogs/unix/1060/ Third Party Advisory
http://www.opera.com/support/search/view/944/ Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html Third Party Advisory
http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html Third Party Advisory
http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c Broken Link
http://www.redhat.com/support/errata/RHSA-2010-0119.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0130.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0155.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0165.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0167.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0337.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0338.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0339.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0768.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0770.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0786.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0807.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0865.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0986.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0987.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2011-0880.html Third Party Advisory
http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html Third Party Advisory
http://www.securityfocus.com/archive/1/507952/100/0/threaded Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/508075/100/0/threaded Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/508130/100/0/threaded Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/515055/100/0/threaded Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/516397/100/0/threaded Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/522176 Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/522176 Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/36935 Exploit Patch Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023163 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023204 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023205 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023206 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023207 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023208 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023209 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023210 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023211 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023212 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023213 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023214 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023215 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023216 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023217 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023218 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023219 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023224 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023243 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023270 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023271 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023272 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023273 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023274 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023275 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023411 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023426 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023427 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023428 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1024789 Third Party Advisory VDB Entry
http://www.tombom.co.uk/blog/?p=85 Broken Link
http://www.ubuntu.com/usn/USN-1010-1 Third Party Advisory
http://www.ubuntu.com/usn/USN-927-1 Third Party Advisory
http://www.ubuntu.com/usn/USN-927-4 Third Party Advisory
http://www.ubuntu.com/usn/USN-927-5 Third Party Advisory
http://www.us-cert.gov/cas/techalerts/TA10-222A.html Third Party Advisory US Government Resource
http://www.us-cert.gov/cas/techalerts/TA10-287A.html Third Party Advisory US Government Resource
http://www.vmware.com/security/advisories/VMSA-2010-0019.html Third Party Advisory
http://www.vmware.com/security/advisories/VMSA-2011-0003.html Third Party Advisory
http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html Third Party Advisory
http://www.vupen.com/english/advisories/2009/3164 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3165 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3205 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3220 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3310 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3313 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3353 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3354 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3484 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3521 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3587 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0086 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0173 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0748 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0848 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0916 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0933 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0982 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0994 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1054 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1107 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1191 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1350 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1639 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1673 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1793 Third Party Advisory
http://www.vupen.com/english/advisories/2010/2010 Third Party Advisory
http://www.vupen.com/english/advisories/2010/2745 Third Party Advisory
http://www.vupen.com/english/advisories/2010/3069 Third Party Advisory
http://www.vupen.com/english/advisories/2010/3086 Third Party Advisory
http://www.vupen.com/english/advisories/2010/3126 Third Party Advisory
http://www.vupen.com/english/advisories/2011/0032 Third Party Advisory
http://www.vupen.com/english/advisories/2011/0033 Third Party Advisory
http://www.vupen.com/english/advisories/2011/0086 Third Party Advisory
http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html Exploit Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=526689 Issue Tracking Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=545755 Issue Tracking Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=533125 Issue Tracking Third Party Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 Third Party Advisory VDB Entry
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 Third Party Advisory
https://kb.bluecoat.com/index?page=content&id=SA50 Third Party Advisory
https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 Third Party Advisory
https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html Third Party Advisory
https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html Third Party Advisory
http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html Broken Link
http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html Third Party Advisory
http://blogs.iss.net/archive/sslmitmiscsrf.html Broken Link
http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during Third Party Advisory
http://clicky.me/tlsvuln Exploit Third Party Advisory
http://extendedsubset.com/?p=8 Broken Link
http://extendedsubset.com/Renegotiating_TLS.pdf Broken Link
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 Broken Link
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 Broken Link
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041 Broken Link
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 Broken Link
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 Broken Link
http://kbase.redhat.com/faq/docs/DOC-20491 Third Party Advisory
http://lists.apple.com/archives/security-announce/2010//May/msg00001.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2010//May/msg00002.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html Mailing List Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html Third Party Advisory
http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html Third Party Advisory
http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=126150535619567&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=126150535619567&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127128920008563&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127128920008563&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127419602507642&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127419602507642&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127557596201693&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=127557596201693&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=130497311408250&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=130497311408250&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=132077688910227&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=132077688910227&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=133469267822771&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=133469267822771&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=134254866602253&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=142660345230545&w=2 Third Party Advisory
http://marc.info/?l=bugtraq&m=142660345230545&w=2 Third Party Advisory
http://marc.info/?l=cryptography&m=125752275331877&w=2 Third Party Advisory
http://openbsd.org/errata45.html#010_openssl Third Party Advisory
http://openbsd.org/errata46.html#004_openssl Third Party Advisory
http://osvdb.org/60521 Broken Link
http://osvdb.org/60972 Broken Link
http://osvdb.org/62210 Broken Link
http://osvdb.org/65202 Broken Link
http://seclists.org/fulldisclosure/2009/Nov/139 Mailing List Third Party Advisory
http://secunia.com/advisories/37291 Third Party Advisory
http://secunia.com/advisories/37292 Third Party Advisory
http://secunia.com/advisories/37320 Third Party Advisory
http://secunia.com/advisories/37383 Third Party Advisory
http://secunia.com/advisories/37399 Third Party Advisory
http://secunia.com/advisories/37453 Third Party Advisory
http://secunia.com/advisories/37501 Third Party Advisory
http://secunia.com/advisories/37504 Third Party Advisory
http://secunia.com/advisories/37604 Third Party Advisory
http://secunia.com/advisories/37640 Third Party Advisory
http://secunia.com/advisories/37656 Third Party Advisory
http://secunia.com/advisories/37675 Third Party Advisory
http://secunia.com/advisories/37859 Third Party Advisory
http://secunia.com/advisories/38003 Third Party Advisory
http://secunia.com/advisories/38020 Third Party Advisory
http://secunia.com/advisories/38056 Third Party Advisory
http://secunia.com/advisories/38241 Third Party Advisory
http://secunia.com/advisories/38484 Third Party Advisory
http://secunia.com/advisories/38687 Third Party Advisory
http://secunia.com/advisories/38781 Third Party Advisory
http://secunia.com/advisories/39127 Third Party Advisory
http://secunia.com/advisories/39136 Third Party Advisory
http://secunia.com/advisories/39242 Third Party Advisory
http://secunia.com/advisories/39243 Third Party Advisory
http://secunia.com/advisories/39278 Third Party Advisory
http://secunia.com/advisories/39292 Third Party Advisory
http://secunia.com/advisories/39317 Third Party Advisory
http://secunia.com/advisories/39461 Third Party Advisory
http://secunia.com/advisories/39500 Third Party Advisory
http://secunia.com/advisories/39628 Third Party Advisory
http://secunia.com/advisories/39632 Third Party Advisory
http://secunia.com/advisories/39713 Third Party Advisory
http://secunia.com/advisories/39819 Third Party Advisory
http://secunia.com/advisories/40070 Third Party Advisory
http://secunia.com/advisories/40545 Third Party Advisory
http://secunia.com/advisories/40747 Third Party Advisory
http://secunia.com/advisories/40866 Third Party Advisory
http://secunia.com/advisories/41480 Third Party Advisory
http://secunia.com/advisories/41490 Third Party Advisory
http://secunia.com/advisories/41818 Third Party Advisory
http://secunia.com/advisories/41967 Third Party Advisory
http://secunia.com/advisories/41972 Third Party Advisory
http://secunia.com/advisories/42377 Third Party Advisory
http://secunia.com/advisories/42379 Third Party Advisory
http://secunia.com/advisories/42467 Third Party Advisory
http://secunia.com/advisories/42724 Third Party Advisory
http://secunia.com/advisories/42733 Third Party Advisory
http://secunia.com/advisories/42808 Third Party Advisory
http://secunia.com/advisories/42811 Third Party Advisory
http://secunia.com/advisories/42816 Third Party Advisory
http://secunia.com/advisories/43308 Third Party Advisory
http://secunia.com/advisories/44183 Third Party Advisory
http://secunia.com/advisories/44954 Third Party Advisory
http://secunia.com/advisories/48577 Third Party Advisory
http://security.gentoo.org/glsa/glsa-200912-01.xml Third Party Advisory
http://security.gentoo.org/glsa/glsa-201203-22.xml Third Party Advisory
http://security.gentoo.org/glsa/glsa-201406-32.xml Third Party Advisory
http://securitytracker.com/id?1023148 Third Party Advisory VDB Entry
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446 Third Party Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1 Broken Link
http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1 Broken Link
http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1 Broken Link
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1 Broken Link
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1 Broken Link
http://support.apple.com/kb/HT4004 Third Party Advisory
http://support.apple.com/kb/HT4170 Third Party Advisory
http://support.apple.com/kb/HT4171 Third Party Advisory
http://support.avaya.com/css/P8/documents/100070150 Third Party Advisory
http://support.avaya.com/css/P8/documents/100081611 Third Party Advisory
http://support.avaya.com/css/P8/documents/100114315 Third Party Advisory
http://support.avaya.com/css/P8/documents/100114327 Third Party Advisory
http://support.citrix.com/article/CTX123359 Third Party Advisory
http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES Broken Link
http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released Broken Link
http://sysoev.ru/nginx/patch.cve-2009-3555.txt Broken Link
http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html Broken Link
http://ubuntu.com/usn/usn-923-1 Third Party Advisory
http://wiki.rpath.com/Advisories:rPSA-2009-0155 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21426108 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21432298 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg24006386 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg24025312 Third Party Advisory
http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only Third Party Advisory
http://www.arubanetworks.com/support/alerts/aid-020810.txt Broken Link
http://www.betanews.com/article/1257452450 Third Party Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml Third Party Advisory
http://www.debian.org/security/2009/dsa-1934 Third Party Advisory
http://www.debian.org/security/2011/dsa-2141 Third Party Advisory
http://www.debian.org/security/2015/dsa-3253 Third Party Advisory
http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html Third Party Advisory
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html Third Party Advisory
http://www.ietf.org/mail-archive/web/tls/current/msg03928.html Third Party Advisory
http://www.ietf.org/mail-archive/web/tls/current/msg03948.html Third Party Advisory
http://www.ingate.com/Relnote.php?ver=481 Third Party Advisory
http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 Third Party Advisory
http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 Third Party Advisory
http://www.kb.cert.org/vuls/id/120541 Third Party Advisory US Government Resource
http://www.links.org/?p=780 Third Party Advisory
http://www.links.org/?p=786 Third Party Advisory
http://www.links.org/?p=789 Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2010:076 Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2010:084 Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2010:089 Broken Link
http://www.mozilla.org/security/announce/2010/mfsa2010-22.html Third Party Advisory
http://www.openoffice.org/security/cves/CVE-2009-3555.html Third Party Advisory
http://www.openssl.org/news/secadv_20091111.txt Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/05/3 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/05/5 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/06/3 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/07/3 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/20/1 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/11/23/10 Mailing List Third Party Advisory
http://www.opera.com/docs/changelogs/unix/1060/ Third Party Advisory
http://www.opera.com/support/search/view/944/ Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html Third Party Advisory
http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html Third Party Advisory
http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c Broken Link
http://www.redhat.com/support/errata/RHSA-2010-0119.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0130.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0155.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0165.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0167.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0337.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0338.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0339.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0768.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0770.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0786.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0807.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0865.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0986.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0987.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2011-0880.html Third Party Advisory
http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html Third Party Advisory
http://www.securityfocus.com/archive/1/507952/100/0/threaded Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/508075/100/0/threaded Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/508130/100/0/threaded Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/515055/100/0/threaded Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/516397/100/0/threaded Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/522176 Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/522176 Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/36935 Exploit Patch Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023163 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023204 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023205 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023206 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023207 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023208 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023209 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023210 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023211 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023212 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023213 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023214 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023215 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023216 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023217 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023218 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023219 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023224 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023243 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023270 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023271 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023272 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023273 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023274 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023275 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023411 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023426 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023427 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1023428 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1024789 Third Party Advisory VDB Entry
http://www.tombom.co.uk/blog/?p=85 Broken Link
http://www.ubuntu.com/usn/USN-1010-1 Third Party Advisory
http://www.ubuntu.com/usn/USN-927-1 Third Party Advisory
http://www.ubuntu.com/usn/USN-927-4 Third Party Advisory
http://www.ubuntu.com/usn/USN-927-5 Third Party Advisory
http://www.us-cert.gov/cas/techalerts/TA10-222A.html Third Party Advisory US Government Resource
http://www.us-cert.gov/cas/techalerts/TA10-287A.html Third Party Advisory US Government Resource
http://www.vmware.com/security/advisories/VMSA-2010-0019.html Third Party Advisory
http://www.vmware.com/security/advisories/VMSA-2011-0003.html Third Party Advisory
http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html Third Party Advisory
http://www.vupen.com/english/advisories/2009/3164 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3165 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3205 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3220 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3310 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3313 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3353 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3354 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3484 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3521 Third Party Advisory
http://www.vupen.com/english/advisories/2009/3587 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0086 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0173 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0748 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0848 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0916 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0933 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0982 Third Party Advisory
http://www.vupen.com/english/advisories/2010/0994 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1054 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1107 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1191 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1350 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1639 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1673 Third Party Advisory
http://www.vupen.com/english/advisories/2010/1793 Third Party Advisory
http://www.vupen.com/english/advisories/2010/2010 Third Party Advisory
http://www.vupen.com/english/advisories/2010/2745 Third Party Advisory
http://www.vupen.com/english/advisories/2010/3069 Third Party Advisory
http://www.vupen.com/english/advisories/2010/3086 Third Party Advisory
http://www.vupen.com/english/advisories/2010/3126 Third Party Advisory
http://www.vupen.com/english/advisories/2011/0032 Third Party Advisory
http://www.vupen.com/english/advisories/2011/0033 Third Party Advisory
http://www.vupen.com/english/advisories/2011/0086 Third Party Advisory
http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html Exploit Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=526689 Issue Tracking Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=545755 Issue Tracking Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=533125 Issue Tracking Third Party Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 Third Party Advisory VDB Entry
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 Third Party Advisory
https://kb.bluecoat.com/index?page=content&id=SA50 Third Party Advisory
https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 Third Party Advisory
https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html Third Party Advisory
https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html Third Party Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Week4

Updated: 1 month ago
0 stars 0 fork 0 watcher
Born at : Nov. 18, 2024, 6:11 p.m. This repo has been linked 2 different CVEs too.

None

Updated: 4 months, 3 weeks ago
0 stars 0 fork 0 watcher
Born at : July 25, 2024, 12:30 p.m. This repo has been linked 2 different CVEs too.

None

Updated: 9 months, 1 week ago
0 stars 0 fork 0 watcher
Born at : March 10, 2024, 12:15 p.m. This repo has been linked 170 different CVEs too.

find vulnerabilities in webserver

Shell

Updated: 3 weeks ago
3 stars 0 fork 0 watcher
Born at : Aug. 12, 2023, 12:57 a.m. This repo has been linked 55 different CVEs too.

None

Updated: 1 year, 4 months ago
0 stars 0 fork 0 watcher
Born at : Aug. 9, 2023, 12:16 p.m. This repo has been linked 170 different CVEs too.

None

Updated: 1 year, 5 months ago
0 stars 0 fork 0 watcher
Born at : June 30, 2023, 4:18 p.m. This repo has been linked 170 different CVEs too.

None

Updated: 1 year, 8 months ago
1 stars 0 fork 0 watcher
Born at : April 10, 2023, 5:46 p.m. This repo has been linked 170 different CVEs too.

Уязвимости и атаки на информационные системы

Updated: 10 months, 1 week ago
0 stars 0 fork 0 watcher
Born at : March 24, 2023, 8:20 a.m. This repo has been linked 170 different CVEs too.

None

Updated: 1 year, 9 months ago
0 stars 2 fork 2 watcher
Born at : March 12, 2023, 3:01 a.m. This repo has been linked 170 different CVEs too.

None

Updated: 2 weeks, 2 days ago
6 stars 0 fork 0 watcher
Born at : Feb. 23, 2023, 5:42 a.m. This repo has been linked 462 different CVEs too.

None

Updated: 1 year, 10 months ago
0 stars 0 fork 0 watcher
Born at : Feb. 13, 2023, 5:42 p.m. This repo has been linked 173 different CVEs too.

A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled.

Go

Updated: 9 months, 3 weeks ago
3 stars 1 fork 1 watcher
Born at : March 30, 2022, 3:02 p.m. This repo has been linked 1 different CVEs too.

Pulse Secure VPN mitm Research - CVE-2020-8241, CVE-2020-8239

Python

Updated: 2 years, 1 month ago
23 stars 3 fork 3 watcher
Born at : Oct. 25, 2020, 3:58 p.m. This repo has been linked 4 different CVEs too.

Deep dive in DataPower TLS configuration

Updated: 2 years, 11 months ago
0 stars 0 fork 0 watcher
Born at : Sept. 18, 2020, 8:59 a.m. This repo has been linked 1 different CVEs too.

Network reconnaissance and vulnerability assessment tools.

Python

Updated: 4 years, 7 months ago
0 stars 1 fork 1 watcher
Born at : May 12, 2020, 7:39 p.m. This repo has been linked 32 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2009-3555 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2009-3555 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by af854a3a-2127-422b-91ae-364da2661108

    Nov. 21, 2024

    Action Type Old Value New Value
    Added Reference http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html
    Added Reference http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html
    Added Reference http://blogs.iss.net/archive/sslmitmiscsrf.html
    Added Reference http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during
    Added Reference http://clicky.me/tlsvuln
    Added Reference http://extendedsubset.com/?p=8
    Added Reference http://extendedsubset.com/Renegotiating_TLS.pdf
    Added Reference http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686
    Added Reference http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686
    Added Reference http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041
    Added Reference http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751
    Added Reference http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751
    Added Reference http://kbase.redhat.com/faq/docs/DOC-20491
    Added Reference http://lists.apple.com/archives/security-announce/2010//May/msg00001.html
    Added Reference http://lists.apple.com/archives/security-announce/2010//May/msg00002.html
    Added Reference http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html
    Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html
    Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html
    Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html
    Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html
    Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html
    Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html
    Added Reference http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html
    Added Reference http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html
    Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html
    Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html
    Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html
    Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
    Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html
    Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html
    Added Reference http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
    Added Reference http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html
    Added Reference http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html
    Added Reference http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2
    Added Reference http://marc.info/?l=bugtraq&m=126150535619567&w=2
    Added Reference http://marc.info/?l=bugtraq&m=126150535619567&w=2
    Added Reference http://marc.info/?l=bugtraq&m=127128920008563&w=2
    Added Reference http://marc.info/?l=bugtraq&m=127128920008563&w=2
    Added Reference http://marc.info/?l=bugtraq&m=127419602507642&w=2
    Added Reference http://marc.info/?l=bugtraq&m=127419602507642&w=2
    Added Reference http://marc.info/?l=bugtraq&m=127557596201693&w=2
    Added Reference http://marc.info/?l=bugtraq&m=127557596201693&w=2
    Added Reference http://marc.info/?l=bugtraq&m=130497311408250&w=2
    Added Reference http://marc.info/?l=bugtraq&m=130497311408250&w=2
    Added Reference http://marc.info/?l=bugtraq&m=132077688910227&w=2
    Added Reference http://marc.info/?l=bugtraq&m=132077688910227&w=2
    Added Reference http://marc.info/?l=bugtraq&m=133469267822771&w=2
    Added Reference http://marc.info/?l=bugtraq&m=133469267822771&w=2
    Added Reference http://marc.info/?l=bugtraq&m=134254866602253&w=2
    Added Reference http://marc.info/?l=bugtraq&m=142660345230545&w=2
    Added Reference http://marc.info/?l=bugtraq&m=142660345230545&w=2
    Added Reference http://marc.info/?l=cryptography&m=125752275331877&w=2
    Added Reference http://openbsd.org/errata45.html#010_openssl
    Added Reference http://openbsd.org/errata46.html#004_openssl
    Added Reference http://osvdb.org/60521
    Added Reference http://osvdb.org/60972
    Added Reference http://osvdb.org/62210
    Added Reference http://osvdb.org/65202
    Added Reference http://seclists.org/fulldisclosure/2009/Nov/139
    Added Reference http://secunia.com/advisories/37291
    Added Reference http://secunia.com/advisories/37292
    Added Reference http://secunia.com/advisories/37320
    Added Reference http://secunia.com/advisories/37383
    Added Reference http://secunia.com/advisories/37399
    Added Reference http://secunia.com/advisories/37453
    Added Reference http://secunia.com/advisories/37501
    Added Reference http://secunia.com/advisories/37504
    Added Reference http://secunia.com/advisories/37604
    Added Reference http://secunia.com/advisories/37640
    Added Reference http://secunia.com/advisories/37656
    Added Reference http://secunia.com/advisories/37675
    Added Reference http://secunia.com/advisories/37859
    Added Reference http://secunia.com/advisories/38003
    Added Reference http://secunia.com/advisories/38020
    Added Reference http://secunia.com/advisories/38056
    Added Reference http://secunia.com/advisories/38241
    Added Reference http://secunia.com/advisories/38484
    Added Reference http://secunia.com/advisories/38687
    Added Reference http://secunia.com/advisories/38781
    Added Reference http://secunia.com/advisories/39127
    Added Reference http://secunia.com/advisories/39136
    Added Reference http://secunia.com/advisories/39242
    Added Reference http://secunia.com/advisories/39243
    Added Reference http://secunia.com/advisories/39278
    Added Reference http://secunia.com/advisories/39292
    Added Reference http://secunia.com/advisories/39317
    Added Reference http://secunia.com/advisories/39461
    Added Reference http://secunia.com/advisories/39500
    Added Reference http://secunia.com/advisories/39628
    Added Reference http://secunia.com/advisories/39632
    Added Reference http://secunia.com/advisories/39713
    Added Reference http://secunia.com/advisories/39819
    Added Reference http://secunia.com/advisories/40070
    Added Reference http://secunia.com/advisories/40545
    Added Reference http://secunia.com/advisories/40747
    Added Reference http://secunia.com/advisories/40866
    Added Reference http://secunia.com/advisories/41480
    Added Reference http://secunia.com/advisories/41490
    Added Reference http://secunia.com/advisories/41818
    Added Reference http://secunia.com/advisories/41967
    Added Reference http://secunia.com/advisories/41972
    Added Reference http://secunia.com/advisories/42377
    Added Reference http://secunia.com/advisories/42379
    Added Reference http://secunia.com/advisories/42467
    Added Reference http://secunia.com/advisories/42724
    Added Reference http://secunia.com/advisories/42733
    Added Reference http://secunia.com/advisories/42808
    Added Reference http://secunia.com/advisories/42811
    Added Reference http://secunia.com/advisories/42816
    Added Reference http://secunia.com/advisories/43308
    Added Reference http://secunia.com/advisories/44183
    Added Reference http://secunia.com/advisories/44954
    Added Reference http://secunia.com/advisories/48577
    Added Reference http://security.gentoo.org/glsa/glsa-200912-01.xml
    Added Reference http://security.gentoo.org/glsa/glsa-201203-22.xml
    Added Reference http://security.gentoo.org/glsa/glsa-201406-32.xml
    Added Reference http://securitytracker.com/id?1023148
    Added Reference http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446
    Added Reference http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1
    Added Reference http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1
    Added Reference http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1
    Added Reference http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1
    Added Reference http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1
    Added Reference http://support.apple.com/kb/HT4004
    Added Reference http://support.apple.com/kb/HT4170
    Added Reference http://support.apple.com/kb/HT4171
    Added Reference http://support.avaya.com/css/P8/documents/100070150
    Added Reference http://support.avaya.com/css/P8/documents/100081611
    Added Reference http://support.avaya.com/css/P8/documents/100114315
    Added Reference http://support.avaya.com/css/P8/documents/100114327
    Added Reference http://support.citrix.com/article/CTX123359
    Added Reference http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES
    Added Reference http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released
    Added Reference http://sysoev.ru/nginx/patch.cve-2009-3555.txt
    Added Reference http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html
    Added Reference http://ubuntu.com/usn/usn-923-1
    Added Reference http://wiki.rpath.com/Advisories:rPSA-2009-0155
    Added Reference http://www.arubanetworks.com/support/alerts/aid-020810.txt
    Added Reference http://www.betanews.com/article/1257452450
    Added Reference http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml
    Added Reference http://www.debian.org/security/2009/dsa-1934
    Added Reference http://www.debian.org/security/2011/dsa-2141
    Added Reference http://www.debian.org/security/2015/dsa-3253
    Added Reference http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html
    Added Reference http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html
    Added Reference http://www.ietf.org/mail-archive/web/tls/current/msg03928.html
    Added Reference http://www.ietf.org/mail-archive/web/tls/current/msg03948.html
    Added Reference http://www.ingate.com/Relnote.php?ver=481
    Added Reference http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995
    Added Reference http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995
    Added Reference http://www.kb.cert.org/vuls/id/120541
    Added Reference http://www.links.org/?p=780
    Added Reference http://www.links.org/?p=786
    Added Reference http://www.links.org/?p=789
    Added Reference http://www.mandriva.com/security/advisories?name=MDVSA-2010:076
    Added Reference http://www.mandriva.com/security/advisories?name=MDVSA-2010:084
    Added Reference http://www.mandriva.com/security/advisories?name=MDVSA-2010:089
    Added Reference http://www.mozilla.org/security/announce/2010/mfsa2010-22.html
    Added Reference http://www.openoffice.org/security/cves/CVE-2009-3555.html
    Added Reference http://www.openssl.org/news/secadv_20091111.txt
    Added Reference http://www.openwall.com/lists/oss-security/2009/11/05/3
    Added Reference http://www.openwall.com/lists/oss-security/2009/11/05/5
    Added Reference http://www.openwall.com/lists/oss-security/2009/11/06/3
    Added Reference http://www.openwall.com/lists/oss-security/2009/11/07/3
    Added Reference http://www.openwall.com/lists/oss-security/2009/11/20/1
    Added Reference http://www.openwall.com/lists/oss-security/2009/11/23/10
    Added Reference http://www.opera.com/docs/changelogs/unix/1060/
    Added Reference http://www.opera.com/support/search/view/944/
    Added Reference http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
    Added Reference http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
    Added Reference http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html
    Added Reference http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0119.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0130.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0155.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0165.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0167.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0337.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0338.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0339.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0768.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0770.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0786.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0807.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0865.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0986.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2010-0987.html
    Added Reference http://www.redhat.com/support/errata/RHSA-2011-0880.html
    Added Reference http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html
    Added Reference http://www.securityfocus.com/archive/1/507952/100/0/threaded
    Added Reference http://www.securityfocus.com/archive/1/508075/100/0/threaded
    Added Reference http://www.securityfocus.com/archive/1/508130/100/0/threaded
    Added Reference http://www.securityfocus.com/archive/1/515055/100/0/threaded
    Added Reference http://www.securityfocus.com/archive/1/516397/100/0/threaded
    Added Reference http://www.securityfocus.com/archive/1/522176
    Added Reference http://www.securityfocus.com/archive/1/522176
    Added Reference http://www.securityfocus.com/bid/36935
    Added Reference http://www.securitytracker.com/id?1023163
    Added Reference http://www.securitytracker.com/id?1023204
    Added Reference http://www.securitytracker.com/id?1023205
    Added Reference http://www.securitytracker.com/id?1023206
    Added Reference http://www.securitytracker.com/id?1023207
    Added Reference http://www.securitytracker.com/id?1023208
    Added Reference http://www.securitytracker.com/id?1023209
    Added Reference http://www.securitytracker.com/id?1023210
    Added Reference http://www.securitytracker.com/id?1023211
    Added Reference http://www.securitytracker.com/id?1023212
    Added Reference http://www.securitytracker.com/id?1023213
    Added Reference http://www.securitytracker.com/id?1023214
    Added Reference http://www.securitytracker.com/id?1023215
    Added Reference http://www.securitytracker.com/id?1023216
    Added Reference http://www.securitytracker.com/id?1023217
    Added Reference http://www.securitytracker.com/id?1023218
    Added Reference http://www.securitytracker.com/id?1023219
    Added Reference http://www.securitytracker.com/id?1023224
    Added Reference http://www.securitytracker.com/id?1023243
    Added Reference http://www.securitytracker.com/id?1023270
    Added Reference http://www.securitytracker.com/id?1023271
    Added Reference http://www.securitytracker.com/id?1023272
    Added Reference http://www.securitytracker.com/id?1023273
    Added Reference http://www.securitytracker.com/id?1023274
    Added Reference http://www.securitytracker.com/id?1023275
    Added Reference http://www.securitytracker.com/id?1023411
    Added Reference http://www.securitytracker.com/id?1023426
    Added Reference http://www.securitytracker.com/id?1023427
    Added Reference http://www.securitytracker.com/id?1023428
    Added Reference http://www.securitytracker.com/id?1024789
    Added Reference http://www.tombom.co.uk/blog/?p=85
    Added Reference http://www.ubuntu.com/usn/USN-1010-1
    Added Reference http://www.ubuntu.com/usn/USN-927-1
    Added Reference http://www.ubuntu.com/usn/USN-927-4
    Added Reference http://www.ubuntu.com/usn/USN-927-5
    Added Reference http://www.us-cert.gov/cas/techalerts/TA10-222A.html
    Added Reference http://www.us-cert.gov/cas/techalerts/TA10-287A.html
    Added Reference http://www.vmware.com/security/advisories/VMSA-2010-0019.html
    Added Reference http://www.vmware.com/security/advisories/VMSA-2011-0003.html
    Added Reference http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html
    Added Reference http://www.vupen.com/english/advisories/2009/3164
    Added Reference http://www.vupen.com/english/advisories/2009/3165
    Added Reference http://www.vupen.com/english/advisories/2009/3205
    Added Reference http://www.vupen.com/english/advisories/2009/3220
    Added Reference http://www.vupen.com/english/advisories/2009/3310
    Added Reference http://www.vupen.com/english/advisories/2009/3313
    Added Reference http://www.vupen.com/english/advisories/2009/3353
    Added Reference http://www.vupen.com/english/advisories/2009/3354
    Added Reference http://www.vupen.com/english/advisories/2009/3484
    Added Reference http://www.vupen.com/english/advisories/2009/3521
    Added Reference http://www.vupen.com/english/advisories/2009/3587
    Added Reference http://www.vupen.com/english/advisories/2010/0086
    Added Reference http://www.vupen.com/english/advisories/2010/0173
    Added Reference http://www.vupen.com/english/advisories/2010/0748
    Added Reference http://www.vupen.com/english/advisories/2010/0848
    Added Reference http://www.vupen.com/english/advisories/2010/0916
    Added Reference http://www.vupen.com/english/advisories/2010/0933
    Added Reference http://www.vupen.com/english/advisories/2010/0982
    Added Reference http://www.vupen.com/english/advisories/2010/0994
    Added Reference http://www.vupen.com/english/advisories/2010/1054
    Added Reference http://www.vupen.com/english/advisories/2010/1107
    Added Reference http://www.vupen.com/english/advisories/2010/1191
    Added Reference http://www.vupen.com/english/advisories/2010/1350
    Added Reference http://www.vupen.com/english/advisories/2010/1639
    Added Reference http://www.vupen.com/english/advisories/2010/1673
    Added Reference http://www.vupen.com/english/advisories/2010/1793
    Added Reference http://www.vupen.com/english/advisories/2010/2010
    Added Reference http://www.vupen.com/english/advisories/2010/2745
    Added Reference http://www.vupen.com/english/advisories/2010/3069
    Added Reference http://www.vupen.com/english/advisories/2010/3086
    Added Reference http://www.vupen.com/english/advisories/2010/3126
    Added Reference http://www.vupen.com/english/advisories/2011/0032
    Added Reference http://www.vupen.com/english/advisories/2011/0033
    Added Reference http://www.vupen.com/english/advisories/2011/0086
    Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848
    Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054
    Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055
    Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247
    Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg21426108
    Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg21432298
    Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg24006386
    Added Reference http://www-01.ibm.com/support/docview.wss?uid=swg24025312
    Added Reference http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only
    Added Reference http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html
    Added Reference https://bugzilla.mozilla.org/show_bug.cgi?id=526689
    Added Reference https://bugzilla.mozilla.org/show_bug.cgi?id=545755
    Added Reference https://bugzilla.redhat.com/show_bug.cgi?id=533125
    Added Reference https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049
    Added Reference https://exchange.xforce.ibmcloud.com/vulnerabilities/54158
    Added Reference https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888
    Added Reference https://kb.bluecoat.com/index?page=content&id=SA50
    Added Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E
    Added Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E
    Added Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E
    Added Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535
    Added Reference https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html
    Added Reference https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt
    Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html
    Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html
    Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html
    Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html
    Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html
    Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html
    Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html
    Added Reference https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html
  • CVE Modified by [email protected]

    May. 14, 2024

    Action Type Old Value New Value
  • CVE Modified by [email protected]

    Feb. 13, 2023

    Action Type Old Value New Value
    Changed Description CVE-2009-3555 TLS: MITM attacks via session renegotiation The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue.
    Removed CVSS V2 Red Hat, Inc. (AV:N/AC:M/Au:N/C:N/I:P/A:N)
    Removed Reference https://access.redhat.com/errata/RHSA-2009:1579 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2009:1580 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2009:1694 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0011 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0119 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0130 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0155 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0162 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0163 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0164 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0165 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0166 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0167 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0337 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0338 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0339 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0408 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0440 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0768 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0770 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0786 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0807 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0865 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0986 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2010:0987 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2011:0880 [No Types Assigned]
    Removed Reference https://access.redhat.com/errata/RHSA-2015:1591 [No Types Assigned]
    Removed Reference https://access.redhat.com/security/cve/CVE-2009-3555 [No Types Assigned]
  • CVE Modified by [email protected]

    Feb. 02, 2023

    Action Type Old Value New Value
    Changed Description The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue. CVE-2009-3555 TLS: MITM attacks via session renegotiation
    Added CVSS V2 Red Hat, Inc. (AV:N/AC:M/Au:N/C:N/I:P/A:N)
    Removed Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory]
    Removed Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory]
    Removed Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory]
    Removed Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E [Mailing List, Third Party Advisory]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0339 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0337 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0338 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2009:1694 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2011:0880 [No Types Assigned]
    Added Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0440 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0011 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0130 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0119 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0807 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2015:1591 [No Types Assigned]
    Added Reference https://access.redhat.com/security/cve/CVE-2009-3555 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0865 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0986 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0987 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0155 [No Types Assigned]
    Added Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0166 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0167 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0164 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0165 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0162 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0163 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0770 [No Types Assigned]
    Added Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0786 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2009:1580 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2009:1579 [No Types Assigned]
    Added Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0408 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2010:0768 [No Types Assigned]
  • Modified Analysis by [email protected]

    Aug. 04, 2022

    Action Type Old Value New Value
    Changed Reference Type https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 No Types Assigned https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 Patch, Vendor Advisory
    Changed Reference Type https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory
    Changed Reference Type https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory
    Changed Reference Type https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory
    Changed Reference Type https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory
    Removed CWE NIST CWE-310
    Added CWE NIST CWE-295
    Added CPE Configuration OR *cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:* versions from (including) 0.1.0 up to (including) 0.8.22
  • CPE Deprecation Remap by [email protected]

    Feb. 05, 2021

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:microsoft:internet_information_server:7.0:*:*:*:*:*:*:* OR *cpe:2.3:a:microsoft:internet_information_services:7.0:*:*:*:*:*:*:*
  • CVE Modified by [email protected]

    Feb. 13, 2020

    Action Type Old Value New Value
    Added Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
  • CVE Modified by [email protected]

    Feb. 03, 2020

    Action Type Old Value New Value
    Added Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
  • CPE Deprecation Remap by [email protected]

    Jul. 03, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:microsoft:iis:7.0:*:*:*:*:*:*:* OR *cpe:2.3:a:microsoft:internet_information_server:7.0:*:*:*:*:*:*:*
  • CVE Modified by [email protected]

    Mar. 25, 2019

    Action Type Old Value New Value
    Added Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
  • CVE Modified by [email protected]

    Mar. 21, 2019

    Action Type Old Value New Value
    Added Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
  • CVE Modified by [email protected]

    Oct. 12, 2018

    Action Type Old Value New Value
    Removed Reference http://www.microsoft.com/technet/security/Bulletin/MS10-049.mspx [Patch, Vendor Advisory]
    Added Reference https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049 [No Types Assigned]
  • Modified Analysis by [email protected]

    Oct. 11, 2018

    Action Type Old Value New Value
    Changed Reference Type http://www.links.org/?p=786 No Types Assigned http://www.links.org/?p=786 Third Party Advisory
    Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html Third Party Advisory
    Changed Reference Type http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html No Types Assigned http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html Third Party Advisory
    Changed Reference Type http://www.links.org/?p=789 No Types Assigned http://www.links.org/?p=789 Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0986.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0986.html Third Party Advisory
    Changed Reference Type http://extendedsubset.com/?p=8 No Types Assigned http://extendedsubset.com/?p=8 Broken Link
    Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html Third Party Advisory
    Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/23/10 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/23/10 Mailing List, Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0786.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0786.html Third Party Advisory
    Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 Third Party Advisory
    Changed Reference Type http://www.arubanetworks.com/support/alerts/aid-020810.txt No Types Assigned http://www.arubanetworks.com/support/alerts/aid-020810.txt Broken Link
    Changed Reference Type http://www.links.org/?p=780 No Types Assigned http://www.links.org/?p=780 Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0155.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0155.html Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/2745 No Types Assigned http://www.vupen.com/english/advisories/2010/2745 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/38687 No Types Assigned http://secunia.com/advisories/38687 Third Party Advisory
    Changed Reference Type http://www.microsoft.com/technet/security/Bulletin/MS10-049.mspx No Types Assigned http://www.microsoft.com/technet/security/Bulletin/MS10-049.mspx Patch, Vendor Advisory
    Changed Reference Type http://seclists.org/fulldisclosure/2009/Nov/139 No Types Assigned http://seclists.org/fulldisclosure/2009/Nov/139 Mailing List, Third Party Advisory
    Changed Reference Type http://www.openssl.org/news/secadv_20091111.txt No Types Assigned http://www.openssl.org/news/secadv_20091111.txt Third Party Advisory
    Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html Third Party Advisory
    Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 Third Party Advisory
    Changed Reference Type http://security.gentoo.org/glsa/glsa-201203-22.xml No Types Assigned http://security.gentoo.org/glsa/glsa-201203-22.xml Third Party Advisory
    Changed Reference Type http://support.avaya.com/css/P8/documents/100114315 No Types Assigned http://support.avaya.com/css/P8/documents/100114315 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/41972 No Types Assigned http://secunia.com/advisories/41972 Third Party Advisory
    Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023411 No Types Assigned http://www.securitytracker.com/id?1023411 Third Party Advisory, VDB Entry
    Changed Reference Type http://secunia.com/advisories/41967 No Types Assigned http://secunia.com/advisories/41967 Third Party Advisory
    Changed Reference Type http://security.gentoo.org/glsa/glsa-201406-32.xml No Types Assigned http://security.gentoo.org/glsa/glsa-201406-32.xml Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/42816 No Types Assigned http://secunia.com/advisories/42816 Third Party Advisory
    Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2010:076 No Types Assigned http://www.mandriva.com/security/advisories?name=MDVSA-2010:076 Broken Link
    Changed Reference Type http://www.debian.org/security/2009/dsa-1934 No Types Assigned http://www.debian.org/security/2009/dsa-1934 Third Party Advisory
    Changed Reference Type http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 No Types Assigned http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 Broken Link
    Changed Reference Type http://secunia.com/advisories/40070 No Types Assigned http://secunia.com/advisories/40070 Third Party Advisory
    Changed Reference Type http://osvdb.org/62210 No Types Assigned http://osvdb.org/62210 Broken Link
    Changed Reference Type http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html No Types Assigned http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html Broken Link
    Changed Reference Type http://www.kb.cert.org/vuls/id/120541 US Government Resource http://www.kb.cert.org/vuls/id/120541 Third Party Advisory, US Government Resource
    Changed Reference Type http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released No Types Assigned http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released Broken Link
    Changed Reference Type http://secunia.com/advisories/42811 No Types Assigned http://secunia.com/advisories/42811 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/42377 No Types Assigned http://secunia.com/advisories/42377 Third Party Advisory
    Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg21432298 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg21432298 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/42379 No Types Assigned http://secunia.com/advisories/42379 Third Party Advisory
    Changed Reference Type http://lists.apple.com/archives/security-announce/2010//May/msg00002.html No Types Assigned http://lists.apple.com/archives/security-announce/2010//May/msg00002.html Mailing List, Third Party Advisory
    Changed Reference Type http://www.securityfocus.com/archive/1/508075/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/508075/100/0/threaded Third Party Advisory, VDB Entry
    Changed Reference Type http://secunia.com/advisories/42808 No Types Assigned http://secunia.com/advisories/42808 Third Party Advisory
    Changed Reference Type http://sysoev.ru/nginx/patch.cve-2009-3555.txt No Types Assigned http://sysoev.ru/nginx/patch.cve-2009-3555.txt Broken Link
    Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2010:084 No Types Assigned http://www.mandriva.com/security/advisories?name=MDVSA-2010:084 Broken Link
    Changed Reference Type http://www.tombom.co.uk/blog/?p=85 No Types Assigned http://www.tombom.co.uk/blog/?p=85 Broken Link
    Changed Reference Type http://secunia.com/advisories/40866 No Types Assigned http://secunia.com/advisories/40866 Third Party Advisory
    Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2010:089 No Types Assigned http://www.mandriva.com/security/advisories?name=MDVSA-2010:089 Broken Link
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0338.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0338.html Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/40747 No Types Assigned http://secunia.com/advisories/40747 Third Party Advisory
    Changed Reference Type https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html No Types Assigned https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/39632 No Types Assigned http://secunia.com/advisories/39632 Third Party Advisory
    Changed Reference Type http://www.ubuntu.com/usn/USN-927-5 No Types Assigned http://www.ubuntu.com/usn/USN-927-5 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/1639 No Types Assigned http://www.vupen.com/english/advisories/2010/1639 Third Party Advisory
    Changed Reference Type http://www.ubuntu.com/usn/USN-927-4 No Types Assigned http://www.ubuntu.com/usn/USN-927-4 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2009/3165 Vendor Advisory http://www.vupen.com/english/advisories/2009/3165 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/37453 No Types Assigned http://secunia.com/advisories/37453 Third Party Advisory
    Changed Reference Type http://www.vmware.com/security/advisories/VMSA-2010-0019.html No Types Assigned http://www.vmware.com/security/advisories/VMSA-2010-0019.html Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2009/3164 Vendor Advisory http://www.vupen.com/english/advisories/2009/3164 Third Party Advisory
    Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html Third Party Advisory
    Changed Reference Type http://www.ubuntu.com/usn/USN-927-1 No Types Assigned http://www.ubuntu.com/usn/USN-927-1 Third Party Advisory
    Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0770.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0770.html Third Party Advisory
    Changed Reference Type http://openbsd.org/errata46.html#004_openssl No Types Assigned http://openbsd.org/errata46.html#004_openssl Third Party Advisory
    Changed Reference Type http://support.avaya.com/css/P8/documents/100081611 No Types Assigned http://support.avaya.com/css/P8/documents/100081611 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2011/0086 No Types Assigned http://www.vupen.com/english/advisories/2011/0086 Third Party Advisory
    Changed Reference Type http://www.debian.org/security/2011/dsa-2141 No Types Assigned http://www.debian.org/security/2011/dsa-2141 Third Party Advisory
    Changed Reference Type http://www.debian.org/security/2015/dsa-3253 No Types Assigned http://www.debian.org/security/2015/dsa-3253 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/3126 No Types Assigned http://www.vupen.com/english/advisories/2010/3126 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/37604 No Types Assigned http://secunia.com/advisories/37604 Third Party Advisory
    Changed Reference Type http://marc.info/?l=bugtraq&m=130497311408250&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=130497311408250&w=2 Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0165.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0165.html Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/37292 Vendor Advisory http://secunia.com/advisories/37292 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/37291 Vendor Advisory http://secunia.com/advisories/37291 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/38020 No Types Assigned http://secunia.com/advisories/38020 Third Party Advisory
    Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055 Third Party Advisory
    Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/1191 No Types Assigned http://www.vupen.com/english/advisories/2010/1191 Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023428 No Types Assigned http://www.securitytracker.com/id?1023428 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023427 No Types Assigned http://www.securitytracker.com/id?1023427 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023426 No Types Assigned http://www.securitytracker.com/id?1023426 Third Party Advisory, VDB Entry
    Changed Reference Type https://kb.bluecoat.com/index?page=content&id=SA50 No Types Assigned https://kb.bluecoat.com/index?page=content&id=SA50 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/0086 No Types Assigned http://www.vupen.com/english/advisories/2010/0086 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/1054 No Types Assigned http://www.vupen.com/english/advisories/2010/1054 Third Party Advisory
    Changed Reference Type http://www.betanews.com/article/1257452450 No Types Assigned http://www.betanews.com/article/1257452450 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/38003 No Types Assigned http://secunia.com/advisories/38003 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/37399 No Types Assigned http://secunia.com/advisories/37399 Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0865.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0865.html Third Party Advisory
    Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html Third Party Advisory
    Changed Reference Type http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 No Types Assigned http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686 Broken Link
    Changed Reference Type http://secunia.com/advisories/39461 No Types Assigned http://secunia.com/advisories/39461 Third Party Advisory
    Changed Reference Type http://marc.info/?l=bugtraq&m=126150535619567&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=126150535619567&w=2 Third Party Advisory
    Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 Third Party Advisory
    Changed Reference Type http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html No Types Assigned http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html Broken Link
    Changed Reference Type http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml No Types Assigned http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml Third Party Advisory
    Changed Reference Type https://bugzilla.redhat.com/show_bug.cgi?id=533125 No Types Assigned https://bugzilla.redhat.com/show_bug.cgi?id=533125 Issue Tracking, Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023215 No Types Assigned http://www.securitytracker.com/id?1023215 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023214 No Types Assigned http://www.securitytracker.com/id?1023214 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023213 No Types Assigned http://www.securitytracker.com/id?1023213 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023212 No Types Assigned http://www.securitytracker.com/id?1023212 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023211 No Types Assigned http://www.securitytracker.com/id?1023211 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023210 No Types Assigned http://www.securitytracker.com/id?1023210 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.vupen.com/english/advisories/2010/2010 No Types Assigned http://www.vupen.com/english/advisories/2010/2010 Third Party Advisory
    Changed Reference Type http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html No Types Assigned http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html Third Party Advisory
    Changed Reference Type http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446 No Types Assigned http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446 Third Party Advisory
    Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1 Broken Link
    Changed Reference Type http://www.vupen.com/english/advisories/2010/0994 No Types Assigned http://www.vupen.com/english/advisories/2010/0994 Third Party Advisory
    Changed Reference Type http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 No Types Assigned http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 Third Party Advisory
    Changed Reference Type http://securitytracker.com/id?1023148 No Types Assigned http://securitytracker.com/id?1023148 Third Party Advisory, VDB Entry
    Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 Third Party Advisory
    Changed Reference Type http://marc.info/?l=bugtraq&m=133469267822771&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=133469267822771&w=2 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/38241 No Types Assigned http://secunia.com/advisories/38241 Third Party Advisory
    Changed Reference Type http://support.apple.com/kb/HT4004 No Types Assigned http://support.apple.com/kb/HT4004 Third Party Advisory
    Changed Reference Type https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt No Types Assigned https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/38484 No Types Assigned http://secunia.com/advisories/38484 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/42733 No Types Assigned http://secunia.com/advisories/42733 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2011/0033 No Types Assigned http://www.vupen.com/english/advisories/2011/0033 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2011/0032 No Types Assigned http://www.vupen.com/english/advisories/2011/0032 Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0337.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0337.html Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023209 No Types Assigned http://www.securitytracker.com/id?1023209 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023208 No Types Assigned http://www.securitytracker.com/id?1023208 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023207 No Types Assigned http://www.securitytracker.com/id?1023207 Third Party Advisory, VDB Entry
    Changed Reference Type https://bugzilla.mozilla.org/show_bug.cgi?id=545755 No Types Assigned https://bugzilla.mozilla.org/show_bug.cgi?id=545755 Issue Tracking, Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023206 No Types Assigned http://www.securitytracker.com/id?1023206 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023205 No Types Assigned http://www.securitytracker.com/id?1023205 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023204 No Types Assigned http://www.securitytracker.com/id?1023204 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.vupen.com/english/advisories/2010/0982 No Types Assigned http://www.vupen.com/english/advisories/2010/0982 Third Party Advisory
    Changed Reference Type http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c No Types Assigned http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c Broken Link
    Changed Reference Type http://www.vupen.com/english/advisories/2009/3521 No Types Assigned http://www.vupen.com/english/advisories/2009/3521 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/0748 No Types Assigned http://www.vupen.com/english/advisories/2010/0748 Third Party Advisory
    Changed Reference Type http://www.vmware.com/security/advisories/VMSA-2011-0003.html No Types Assigned http://www.vmware.com/security/advisories/VMSA-2011-0003.html Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0768.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0768.html Third Party Advisory
    Changed Reference Type http://marc.info/?l=bugtraq&m=127128920008563&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=127128920008563&w=2 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/39317 No Types Assigned http://secunia.com/advisories/39317 Third Party Advisory
    Changed Reference Type http://www.securityfocus.com/archive/1/516397/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/516397/100/0/threaded Third Party Advisory, VDB Entry
    Changed Reference Type http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html No Types Assigned http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html Third Party Advisory
    Changed Reference Type http://marc.info/?l=bugtraq&m=132077688910227&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=132077688910227&w=2 Third Party Advisory
    Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html Third Party Advisory
    Changed Reference Type http://blogs.iss.net/archive/sslmitmiscsrf.html No Types Assigned http://blogs.iss.net/archive/sslmitmiscsrf.html Broken Link
    Changed Reference Type http://secunia.com/advisories/37383 No Types Assigned http://secunia.com/advisories/37383 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/40545 No Types Assigned http://secunia.com/advisories/40545 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/42724 No Types Assigned http://secunia.com/advisories/42724 Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2011-0880.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2011-0880.html Third Party Advisory
    Changed Reference Type https://bugzilla.mozilla.org/show_bug.cgi?id=526689 No Types Assigned https://bugzilla.mozilla.org/show_bug.cgi?id=526689 Issue Tracking, Third Party Advisory
    Changed Reference Type http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041 No Types Assigned http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041 Broken Link
    Changed Reference Type http://www.openoffice.org/security/cves/CVE-2009-3555.html No Types Assigned http://www.openoffice.org/security/cves/CVE-2009-3555.html Third Party Advisory
    Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/0173 No Types Assigned http://www.vupen.com/english/advisories/2010/0173 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/38056 No Types Assigned http://secunia.com/advisories/38056 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/37640 No Types Assigned http://secunia.com/advisories/37640 Third Party Advisory
    Changed Reference Type http://www.ingate.com/Relnote.php?ver=481 No Types Assigned http://www.ingate.com/Relnote.php?ver=481 Third Party Advisory
    Changed Reference Type http://www.ubuntu.com/usn/USN-1010-1 No Types Assigned http://www.ubuntu.com/usn/USN-1010-1 Third Party Advisory
    Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 Third Party Advisory
    Changed Reference Type http://marc.info/?l=bugtraq&m=127419602507642&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=127419602507642&w=2 Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0987.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0987.html Third Party Advisory
    Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html Third Party Advisory
    Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1 Broken Link
    Changed Reference Type https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 No Types Assigned https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 Third Party Advisory
    Changed Reference Type http://www.us-cert.gov/cas/techalerts/TA10-222A.html US Government Resource http://www.us-cert.gov/cas/techalerts/TA10-222A.html Third Party Advisory, US Government Resource
    Changed Reference Type http://clicky.me/tlsvuln No Types Assigned http://clicky.me/tlsvuln Exploit, Third Party Advisory
    Changed Reference Type http://marc.info/?l=bugtraq&m=134254866602253&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=134254866602253&w=2 Third Party Advisory
    Changed Reference Type http://support.apple.com/kb/HT4170 No Types Assigned http://support.apple.com/kb/HT4170 Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023224 No Types Assigned http://www.securitytracker.com/id?1023224 Third Party Advisory, VDB Entry
    Changed Reference Type http://secunia.com/advisories/39819 No Types Assigned http://secunia.com/advisories/39819 Third Party Advisory
    Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2009/3587 No Types Assigned http://www.vupen.com/english/advisories/2009/3587 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/39136 No Types Assigned http://secunia.com/advisories/39136 Third Party Advisory
    Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2009/3220 Vendor Advisory http://www.vupen.com/english/advisories/2009/3220 Third Party Advisory
    Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html Third Party Advisory
    Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848 Third Party Advisory
    Changed Reference Type http://support.apple.com/kb/HT4171 No Types Assigned http://support.apple.com/kb/HT4171 Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0339.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0339.html Third Party Advisory
    Changed Reference Type http://www.securityfocus.com/archive/1/508130/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/508130/100/0/threaded Third Party Advisory, VDB Entry
    Changed Reference Type http://osvdb.org/60521 No Types Assigned http://osvdb.org/60521 Broken Link
    Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html Third Party Advisory
    Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/07/3 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/07/3 Mailing List, Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/0848 No Types Assigned http://www.vupen.com/english/advisories/2010/0848 Third Party Advisory
    Changed Reference Type http://lists.apple.com/archives/security-announce/2010//May/msg00001.html No Types Assigned http://lists.apple.com/archives/security-announce/2010//May/msg00001.html Mailing List, Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023219 No Types Assigned http://www.securitytracker.com/id?1023219 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securityfocus.com/bid/36935 Exploit, Patch http://www.securityfocus.com/bid/36935 Exploit, Patch, Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023218 No Types Assigned http://www.securitytracker.com/id?1023218 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023217 No Types Assigned http://www.securitytracker.com/id?1023217 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023216 No Types Assigned http://www.securitytracker.com/id?1023216 Third Party Advisory, VDB Entry
    Changed Reference Type http://secunia.com/advisories/37504 No Types Assigned http://secunia.com/advisories/37504 Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1024789 No Types Assigned http://www.securitytracker.com/id?1024789 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.vupen.com/english/advisories/2009/3313 No Types Assigned http://www.vupen.com/english/advisories/2009/3313 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2009/3310 No Types Assigned http://www.vupen.com/english/advisories/2009/3310 Third Party Advisory
    Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 Third Party Advisory
    Changed Reference Type http://www.opera.com/docs/changelogs/unix/1060/ No Types Assigned http://www.opera.com/docs/changelogs/unix/1060/ Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/39127 No Types Assigned http://secunia.com/advisories/39127 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/37501 No Types Assigned http://secunia.com/advisories/37501 Third Party Advisory
    Changed Reference Type http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html No Types Assigned http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html Third Party Advisory
    Changed Reference Type https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 No Types Assigned https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 Third Party Advisory, VDB Entry
    Changed Reference Type http://osvdb.org/65202 No Types Assigned http://osvdb.org/65202 Broken Link
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0130.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0130.html Third Party Advisory
    Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html Third Party Advisory
    Changed Reference Type http://www.securityfocus.com/archive/1/507952/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/507952/100/0/threaded Third Party Advisory, VDB Entry
    Changed Reference Type http://www.mozilla.org/security/announce/2010/mfsa2010-22.html No Types Assigned http://www.mozilla.org/security/announce/2010/mfsa2010-22.html Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/44954 No Types Assigned http://secunia.com/advisories/44954 Third Party Advisory
    Changed Reference Type http://www.ietf.org/mail-archive/web/tls/current/msg03928.html No Types Assigned http://www.ietf.org/mail-archive/web/tls/current/msg03928.html Third Party Advisory
    Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html Third Party Advisory
    Changed Reference Type http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html No Types Assigned http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0807.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0807.html Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2009/3205 Vendor Advisory http://www.vupen.com/english/advisories/2009/3205 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/37859 No Types Assigned http://secunia.com/advisories/37859 Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023243 No Types Assigned http://www.securitytracker.com/id?1023243 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.vupen.com/english/advisories/2010/1350 No Types Assigned http://www.vupen.com/english/advisories/2010/1350 Third Party Advisory
    Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1 Broken Link
    Changed Reference Type http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html No Types Assigned http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html Mailing List, Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/39242 No Types Assigned http://secunia.com/advisories/39242 Third Party Advisory
    Changed Reference Type http://support.citrix.com/article/CTX123359 No Types Assigned http://support.citrix.com/article/CTX123359 Third Party Advisory
    Changed Reference Type http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html No Types Assigned http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/39243 No Types Assigned http://secunia.com/advisories/39243 Third Party Advisory
    Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg21426108 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg21426108 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/39628 No Types Assigned http://secunia.com/advisories/39628 Third Party Advisory
    Changed Reference Type http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only No Types Assigned http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only Third Party Advisory
    Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023275 No Types Assigned http://www.securitytracker.com/id?1023275 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023274 No Types Assigned http://www.securitytracker.com/id?1023274 Third Party Advisory, VDB Entry
    Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/37320 Vendor Advisory http://secunia.com/advisories/37320 Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023273 No Types Assigned http://www.securitytracker.com/id?1023273 Third Party Advisory, VDB Entry
    Changed Reference Type http://secunia.com/advisories/39500 No Types Assigned http://secunia.com/advisories/39500 Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023272 No Types Assigned http://www.securitytracker.com/id?1023272 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023271 No Types Assigned http://www.securitytracker.com/id?1023271 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id?1023270 No Types Assigned http://www.securitytracker.com/id?1023270 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.vupen.com/english/advisories/2010/0933 No Types Assigned http://www.vupen.com/english/advisories/2010/0933 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/1107 No Types Assigned http://www.vupen.com/english/advisories/2010/1107 Third Party Advisory
    Changed Reference Type http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during No Types Assigned http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during Third Party Advisory
    Changed Reference Type http://wiki.rpath.com/Advisories:rPSA-2009-0155 No Types Assigned http://wiki.rpath.com/Advisories:rPSA-2009-0155 Third Party Advisory
    Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 Third Party Advisory
    Changed Reference Type http://marc.info/?l=bugtraq&m=127557596201693&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=127557596201693&w=2 Third Party Advisory
    Changed Reference Type http://osvdb.org/60972 No Types Assigned http://osvdb.org/60972 Broken Link
    Changed Reference Type http://secunia.com/advisories/38781 No Types Assigned http://secunia.com/advisories/38781 Third Party Advisory
    Changed Reference Type http://www.ietf.org/mail-archive/web/tls/current/msg03948.html No Types Assigned http://www.ietf.org/mail-archive/web/tls/current/msg03948.html Third Party Advisory
    Changed Reference Type http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html No Types Assigned http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html Third Party Advisory
    Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg24025312 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg24025312 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/48577 No Types Assigned http://secunia.com/advisories/48577 Third Party Advisory
    Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1 Broken Link
    Changed Reference Type http://secunia.com/advisories/41818 No Types Assigned http://secunia.com/advisories/41818 Third Party Advisory
    Changed Reference Type http://marc.info/?l=bugtraq&m=142660345230545&w=2 No Types Assigned http://marc.info/?l=bugtraq&m=142660345230545&w=2 Third Party Advisory
    Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html Third Party Advisory
    Changed Reference Type http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html No Types Assigned http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html Third Party Advisory
    Changed Reference Type http://www.opera.com/support/search/view/944/ No Types Assigned http://www.opera.com/support/search/view/944/ Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/37675 No Types Assigned http://secunia.com/advisories/37675 Third Party Advisory
    Changed Reference Type http://ubuntu.com/usn/usn-923-1 No Types Assigned http://ubuntu.com/usn/usn-923-1 Third Party Advisory
    Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html Third Party Advisory
    Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/05/5 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/05/5 Mailing List, Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/41490 No Types Assigned http://secunia.com/advisories/41490 Third Party Advisory
    Changed Reference Type http://security.gentoo.org/glsa/glsa-200912-01.xml No Types Assigned http://security.gentoo.org/glsa/glsa-200912-01.xml Third Party Advisory
    Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/05/3 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/05/3 Mailing List, Third Party Advisory
    Changed Reference Type http://www.securityfocus.com/archive/1/522176 No Types Assigned http://www.securityfocus.com/archive/1/522176 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.vupen.com/english/advisories/2010/3086 No Types Assigned http://www.vupen.com/english/advisories/2010/3086 Third Party Advisory
    Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html Third Party Advisory
    Changed Reference Type http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html No Types Assigned http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html Exploit, Third Party Advisory
    Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 No Types Assigned https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/42467 No Types Assigned http://secunia.com/advisories/42467 Third Party Advisory
    Changed Reference Type http://support.avaya.com/css/P8/documents/100070150 No Types Assigned http://support.avaya.com/css/P8/documents/100070150 Third Party Advisory
    Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/20/1 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/20/1 Mailing List, Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/3069 No Types Assigned http://www.vupen.com/english/advisories/2010/3069 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2009/3354 No Types Assigned http://www.vupen.com/english/advisories/2009/3354 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2009/3353 No Types Assigned http://www.vupen.com/english/advisories/2009/3353 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/43308 No Types Assigned http://secunia.com/advisories/43308 Third Party Advisory
    Changed Reference Type http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html No Types Assigned http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html Third Party Advisory
    Changed Reference Type http://extendedsubset.com/Renegotiating_TLS.pdf No Types Assigned http://extendedsubset.com/Renegotiating_TLS.pdf Broken Link
    Changed Reference Type http://secunia.com/advisories/39292 No Types Assigned http://secunia.com/advisories/39292 Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/0916 No Types Assigned http://www.vupen.com/english/advisories/2010/0916 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/41480 No Types Assigned http://secunia.com/advisories/41480 Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0167.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0167.html Third Party Advisory
    Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html Third Party Advisory
    Changed Reference Type http://support.avaya.com/css/P8/documents/100114327 No Types Assigned http://support.avaya.com/css/P8/documents/100114327 Third Party Advisory
    Changed Reference Type http://www.securityfocus.com/archive/1/515055/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/515055/100/0/threaded Third Party Advisory, VDB Entry
    Changed Reference Type http://openbsd.org/errata45.html#010_openssl No Types Assigned http://openbsd.org/errata45.html#010_openssl Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/1793 No Types Assigned http://www.vupen.com/english/advisories/2010/1793 Third Party Advisory
    Changed Reference Type http://www.redhat.com/support/errata/RHSA-2010-0119.html No Types Assigned http://www.redhat.com/support/errata/RHSA-2010-0119.html Third Party Advisory
    Changed Reference Type http://www.vupen.com/english/advisories/2010/1673 No Types Assigned http://www.vupen.com/english/advisories/2010/1673 Third Party Advisory
    Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg24006386 No Types Assigned http://www-01.ibm.com/support/docview.wss?uid=swg24006386 Third Party Advisory
    Changed Reference Type http://www.securitytracker.com/id?1023163 No Types Assigned http://www.securitytracker.com/id?1023163 Third Party Advisory, VDB Entry
    Changed Reference Type http://www.vupen.com/english/advisories/2009/3484 No Types Assigned http://www.vupen.com/english/advisories/2009/3484 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/39278 No Types Assigned http://secunia.com/advisories/39278 Third Party Advisory
    Changed Reference Type http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES No Types Assigned http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES Broken Link
    Changed Reference Type http://secunia.com/advisories/39713 No Types Assigned http://secunia.com/advisories/39713 Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/37656 No Types Assigned http://secunia.com/advisories/37656 Third Party Advisory
    Changed Reference Type http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1 No Types Assigned http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1 Broken Link
    Changed Reference Type http://marc.info/?l=cryptography&m=125752275331877&w=2 No Types Assigned http://marc.info/?l=cryptography&m=125752275331877&w=2 Third Party Advisory
    Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html No Types Assigned http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html Third Party Advisory
    Changed Reference Type http://secunia.com/advisories/44183 No Types Assigned http://secunia.com/advisories/44183 Third Party Advisory
    Changed Reference Type http://www.openwall.com/lists/oss-security/2009/11/06/3 No Types Assigned http://www.openwall.com/lists/oss-security/2009/11/06/3 Mailing List, Third Party Advisory
    Changed Reference Type http://www.us-cert.gov/cas/techalerts/TA10-287A.html US Government Resource http://www.us-cert.gov/cas/techalerts/TA10-287A.html Third Party Advisory, US Government Resource
    Changed Reference Type https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html No Types Assigned https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html Third Party Advisory
    Changed Reference Type http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2 No Types Assigned http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2 Third Party Advisory
    Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html No Types Assigned http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html Third Party Advisory
    Changed Reference Type http://kbase.redhat.com/faq/docs/DOC-20491 No Types Assigned http://kbase.redhat.com/faq/docs/DOC-20491 Third Party Advisory
    Changed CPE Configuration AND OR *cpe:2.3:a:apache:http_server:0.8.11:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:0.8.14:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.0.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.1.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.2.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.1.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.7:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.7:*:dev:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.8:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.9:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.11:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.12:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.13:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.14:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.15:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.16:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.17:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.18:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.19:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.20:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.22:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.23:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.24:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.25:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.26:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.27:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.28:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.29:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.30:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.31:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.32:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.33:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.34:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.35:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.36:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.37:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.38:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.39:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.65:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.3.68:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:1.99:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.9:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.28:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.28:beta:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.32:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.32:beta:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.34:beta:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.35:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.36:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.37:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.38:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.39:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.40:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.41:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.42:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.43:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.44:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.45:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.46:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.46:*:win32:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.47:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.48:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.49:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.50:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.51:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.52:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.53:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.54:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.55:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.56:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.57:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.58:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.58:*:win32:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.59:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.60:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.61:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.0.63:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.7:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.8:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.1.9:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.0:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.1:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.2:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.3:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.4:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.5:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.6:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.7:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.8:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.10:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.11:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:2.2.12:*:*:*:*:*:*:* *cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* versions up to (including) 2.2.13 *cpe:2.3:a:gnu:gnutls:1.0.16:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.17:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.18:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.19:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.20:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.21:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.22:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.23:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.24:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.0.25:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.13:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.14:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.15:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.16:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.17:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.18:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.19:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.20:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.21:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.22:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.1.23:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.8.1a1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.9:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.10:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.2.11:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.3.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.4.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.5.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.6.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.9:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.10:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.11:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.12:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.13:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.14:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.15:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.16:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.17:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.18:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:1.7.19:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.0.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.1.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.2.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.7:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.8:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.9:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.10:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.3.11:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.4.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.4.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.4.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.5.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.1:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.2:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.3:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.4:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.5:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.6.6:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:2.8.0:*:*:*:*:*:*:* *cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:* versions up to (including) 2.8.1 *cpe:2.3:a:microsoft:iis:7.0:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.0:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.2.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.3:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.3.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.3.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.4.3:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.5:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.6:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.6.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.3:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.5:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.7.7:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.8:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.9:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.9.5:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.10:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.2:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.4:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.7:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.11.8:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.12:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:3.12.1:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:* versions up to (including) 3.12.2 *cpe:2.3:a:openssl:openssl:0.9.1c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.2b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.3:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.3a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.4:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5a:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.5a:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6:beta3:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6a:beta3:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6d:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6e:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6f:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6g:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6h:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6i:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6j:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6k:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6l:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.6m:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta3:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta4:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta5:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7:beta6:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7d:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7e:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7f:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7g:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7h:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7i:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7j:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7k:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7l:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.7m:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8d:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8e:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8f:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:0.9.8g:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions up to (including) 0.9.8h *cpe:2.3:a:openssl:openssl:1.0:*:openvms:*:*:*:*:* OR OR *cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:11:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:*
    Added CPE Configuration OR *cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* versions up to (including) 2.2.14 *cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:* versions up to (including) 2.8.5 *cpe:2.3:a:microsoft:iis:7.0:*:*:*:*:*:*:* *cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:* versions up to (including) 3.12.4 *cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions up to (including) 0.9.8k *cpe:2.3:a:openssl:openssl:1.0:*:openvms:*:*:*:*:*
  • CVE Modified by [email protected]

    Oct. 10, 2018

    Action Type Old Value New Value
    Removed Reference http://www.securityfocus.com/archive/1/archive/1/515055/100/0/threaded [No Types Assigned]
    Removed Reference http://www.securityfocus.com/archive/1/archive/1/508075/100/0/threaded [No Types Assigned]
    Removed Reference http://www.securityfocus.com/archive/1/archive/1/507952/100/0/threaded [No Types Assigned]
    Removed Reference http://www.securityfocus.com/archive/1/archive/1/508130/100/0/threaded [No Types Assigned]
    Removed Reference http://www.securityfocus.com/archive/1/archive/1/516397/100/0/threaded [No Types Assigned]
    Added Reference http://www.securityfocus.com/archive/1/516397/100/0/threaded [No Types Assigned]
    Added Reference http://www.securityfocus.com/archive/1/515055/100/0/threaded [No Types Assigned]
    Added Reference http://www.securityfocus.com/archive/1/508130/100/0/threaded [No Types Assigned]
    Added Reference http://www.securityfocus.com/archive/1/508075/100/0/threaded [No Types Assigned]
    Added Reference http://www.securityfocus.com/archive/1/507952/100/0/threaded [No Types Assigned]
  • CVE Modified by [email protected]

    Sep. 19, 2017

    Action Type Old Value New Value
    Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11617 [No Types Assigned]
    Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7315 [No Types Assigned]
    Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8366 [No Types Assigned]
    Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7973 [No Types Assigned]
    Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8535 [No Types Assigned]
    Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11578 [No Types Assigned]
    Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7478 [No Types Assigned]
    Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10088 [No Types Assigned]
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535 [No Types Assigned]
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366 [No Types Assigned]
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973 [No Types Assigned]
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478 [No Types Assigned]
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315 [No Types Assigned]
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617 [No Types Assigned]
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578 [No Types Assigned]
    Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088 [No Types Assigned]
  • CVE Modified by [email protected]

    Aug. 17, 2017

    Action Type Old Value New Value
    Removed Reference http://xforce.iss.net/xforce/xfdb/54158 [No Types Assigned]
    Added Reference https://exchange.xforce.ibmcloud.com/vulnerabilities/54158 [No Types Assigned]
  • CVE Modified by [email protected]

    Aug. 23, 2016

    Action Type Old Value New Value
    Removed Reference https://h20565.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888
    Added Reference http://marc.info/?l=bugtraq&m=127128920008563&w=2
    Added Reference http://marc.info/?l=bugtraq&m=134254866602253&w=2
    Added Reference http://marc.info/?l=bugtraq&m=127557596201693&w=2
    Added Reference http://marc.info/?l=bugtraq&m=126150535619567&w=2
    Added Reference http://marc.info/?l=bugtraq&m=133469267822771&w=2
  • CVE Modified by [email protected]

    Aug. 20, 2016

    Action Type Old Value New Value
    Added Reference https://h20565.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888
  • CVE Modified by [email protected]

    Aug. 17, 2016

    Action Type Old Value New Value
    Added Reference https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888
  • CVE Modified by [email protected]

    May. 14, 2015

    Action Type Old Value New Value
    Added Reference http://www.debian.org/security/2015/dsa-3253
  • CVE Modified by [email protected]

    Mar. 24, 2015

    Action Type Old Value New Value
    Added Reference http://marc.info/?l=bugtraq&m=142660345230545&w=2
  • CVE Modified by [email protected]

    Nov. 14, 2014

    Action Type Old Value New Value
    Added Reference http://www.openssl.org/news/secadv_20091111.txt
    Added Reference http://secunia.com/advisories/41818
  • Initial Analysis by [email protected]

    Nov. 10, 2009

    Action Type Old Value New Value
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2009-3555 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2009-3555 weaknesses.

Exploit Prediction

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.

3.57 }} 3.21%

score

0.91475

percentile

CVSS2 - Vulnerability Scoring System
Access Vector
Access Complexity
Authentication
Confidentiality
Integrity
Availability