Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2015-2319

Опубликовано: 08 янв. 2018
Источник: debian

Описание

The TLS stack in Mono before 3.12.1 makes it easier for remote attackers to conduct cipher-downgrade attacks to EXPORT_RSA ciphers via crafted TLS traffic, related to the "FREAK" issue, a different vulnerability than CVE-2015-0204.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
monofixed3.2.8+dfsg-10package

Примечания

  • https://github.com/mono/mono/commit/9c38772f094168d8bfd5bc73bf8925cd04faad10

  • Patch for versions earlier than 3.4: https://gist.github.com/directhex/728af6f96d1b8c976659

Связанные уязвимости

ubuntu логотип

CVE-2015-2319

CVSS3: 7.5
ubuntu
около 8 лет назад

The TLS stack in Mono before 3.12.1 makes it easier for remote attackers to conduct cipher-downgrade attacks to EXPORT_RSA ciphers via crafted TLS traffic, related to the "FREAK" issue, a different vulnerability than CVE-2015-0204.

nvd логотип

CVE-2015-2319

CVSS3: 7.5
nvd
около 8 лет назад

The TLS stack in Mono before 3.12.1 makes it easier for remote attackers to conduct cipher-downgrade attacks to EXPORT_RSA ciphers via crafted TLS traffic, related to the "FREAK" issue, a different vulnerability than CVE-2015-0204.

github логотип

GHSA-rpmm-5q5g-56vf

CVSS3: 7.5
github
больше 3 лет назад

The TLS stack in Mono before 3.12.1 makes it easier for remote attackers to conduct cipher-downgrade attacks to EXPORT_RSA ciphers via crafted TLS traffic, related to the "FREAK" issue, a different vulnerability than CVE-2015-0204.

suse-cvrf логотип

SUSE-SU-2015:0841-1

suse-cvrf
почти 12 лет назад

Recommended update for mono-core