CERT/CC Vulnerability Note VU#804060
Cookies set via HTTP requests may be used to bypass HTTPS and reveal private information Vulnerability Note VU#804060 Original Release Date: 2015-09-24 | Last Revised: 2015-10-28 RFC 6265 (previously RFC 2965) established HTTP State Management, also known as "cookies". In most web browser implementations of RFC 6265, cookies set via HTTP requests may allow a remote attacker to bypass HTTPS and rev
Vendor Information for VU#591120
Vendor Information for VU#591120 Multiple SSL certificate authorities use predefined email addresses as proof of domain ownership VendorStatusDate NotifiedDate UpdatedActalisAffected-26 Mar 2015CERTUMAffected-26 Mar 2015COMODO Security Solutions, Inc.Affected-26 Mar 2015ComSignAffected-26 Mar 2015e-tugraAffected-26 Mar 2015GeoTrustAffected-27 Mar 2015GlobalSignAffected-26 Mar 2015GoDaddyAffected-2
CERT/CC Vulnerability Note VU#962587
Quagga, a routing software suite, contains a BGP OPEN vulnerability that result in a denial-of-service condition. CVE-2012-1820: Quagga version 0.99.20.1 and before contains a bug in BGP OPEN message handling. Program Impacted: bgpd: fix DoS in bgp_capability_orf() Description: If a pre-configured BGP peer sends a specially-crafted OPEN message with a malformed ORF capability TLV, Quagga bgpd proc
CERT/CC Vulnerability Note VU#723755
Vulnerability Note VU#723755 Original Release Date: 2011-12-27 | Last Revised: 2012-05-10 The WiFi Protected Setup (WPS) PIN is susceptible to a brute force attack. A design flaw that exists in the WPS specification for the PIN authentication significantly reduces the time required to brute force the entire PIN because it allows an attacker to know when the first half of the 8 digit PIN is correct
1
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
