Headline

CVE-2013-1620

The TLS implementation in Mozilla Network Security Services (NSS) does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, a related issue to CVE-2013-0169.

11 years ago

CVE

Open in Source

#mac #perl #ssl

�m?�^x��w�Ě4�P�ả�Ċ��C�ˁw��/R�Ҁ"�� y �P��d�$^O��c�H�o�dz�1�~�3H�5(B&�u��X],� �E��&�2��+�P{eׂ�ʴC�^7�X߰�n��oן�P��҃v��ep’�n�%o�Z�0��r;C?��q�j�v��N��’�So&�`��6�I�ta�yV8Q��3�i l��E��P�/ae��

Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote authenticated users to affect availability via vectors related to DDL.

9 years ago

CVE

Open in Source

#sql #vulnerability #web #mac #windows #apple #google #microsoft #linux #red_hat #apache #js #git #java #oracle #kubernetes #intel #ldap #pdf #auth #ssh #zero_day #docker #ssl

CVE-2015-0395: Oracle Critical Patch Update Advisory - January 2015

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

9 years ago

CVE

Open in Source

#sql #vulnerability #web #mac #windows #apple #google #microsoft #linux #red_hat #apache #js #git #java #oracle #kubernetes #intel #ldap #pdf #auth #ssh #zero_day #docker #ssl

CVE-2014-4265: Oracle Critical Patch Update - July 2014

Unspecified vulnerability in Oracle Java SE 6u75, 7u60, and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment.

10 years ago

CVE

Open in Source

#sql #vulnerability #web #mac #windows #apple #google #linux #red_hat #apache #js #git #java #oracle #kubernetes #auth #zero_day #docker #ssl

CVE-2014-4260: Oracle Critical Patch Update - July 2014

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier, and 5.6.17 and earlier, allows remote authenticated users to affect integrity and availability via vectors related to SRCHAR.

10 years ago

CVE

Open in Source

#sql #vulnerability #web #mac #windows #apple #google #linux #red_hat #apache #js #git #java #oracle #kubernetes #auth #zero_day #docker #ssl

CVE-2014-2421: Oracle Critical Patch Update - April 2014

Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.

10 years ago

CVE

Open in Source

#sql #vulnerability #web #mac #windows #apple #google #linux #red_hat #java #oracle #kubernetes #auth #zero_day #docker #ssl

CVE-2014-2436: Oracle Critical Patch Update - April 2014

Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RBR.

10 years ago

CVE

Open in Source

#sql #vulnerability #web #mac #windows #apple #google #linux #red_hat #java #oracle #kubernetes #auth #zero_day #docker #ssl

CVE-2013-5891: Oracle Critical Patch Update - January 2014

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.33 and earlier and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition.

10 years ago

CVE

Open in Source