Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2010-3173

Опубликовано: 19 окт. 2010
Источник: redhat
CVSS2: 5.1
EPSS Низкий

Описание

The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly set the minimum key length for Diffie-Hellman Ephemeral (DHE) mode, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 4thunderbirdAffected
Red Hat Enterprise Linux 5thunderbirdAffected
Red Hat Enterprise Linux 6firefoxAffected
Red Hat Enterprise Linux 6thunderbirdAffected
Red Hat Enterprise Linux 3seamonkeyFixedRHSA-2010:078119.10.2010
Red Hat Enterprise Linux 4seamonkeyFixedRHSA-2010:078119.10.2010
Red Hat Enterprise Linux 4firefoxFixedRHSA-2010:078219.10.2010
Red Hat Enterprise Linux 4nssFixedRHSA-2010:078219.10.2010
Red Hat Enterprise Linux 5firefoxFixedRHSA-2010:078219.10.2010
Red Hat Enterprise Linux 5nssFixedRHSA-2010:078219.10.2010

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=642302NSS: insecure Diffie-Hellman key exchange

EPSS

Процентиль: 84%
0.02346
Низкий

5.1 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2010-3173

ubuntu
около 15 лет назад

The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly set the minimum key length for Diffie-Hellman Ephemeral (DHE) mode, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.

nvd логотип

CVE-2010-3173

nvd
около 15 лет назад

The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly set the minimum key length for Diffie-Hellman Ephemeral (DHE) mode, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.

debian логотип

CVE-2010-3173

debian
около 15 лет назад

The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x befo ...

github логотип

GHSA-qx2q-p5g3-ww8g

github
больше 3 лет назад

The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly set the minimum key length for Diffie-Hellman Ephemeral (DHE) mode, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.

fstec логотип

BDU:2015-02598

fstec
почти 11 лет назад

Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

EPSS

Процентиль: 84%
0.02346
Низкий

5.1 Medium

CVSS2