Описание
The NSSCipherSuite option with ciphersuites enabled in mod_nss before 1.0.12 allows remote attackers to bypass application restrictions.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | mod_nss | Not affected | ||
| Red Hat Enterprise Linux 5 | openldap | Not affected | ||
| Red Hat Enterprise Linux 6 | mod_nss | Not affected | ||
| Red Hat Enterprise Linux 6 | nss_compat_ossl | Not affected | ||
| Red Hat Enterprise Linux 6 | openldap | Not affected | ||
| Red Hat Enterprise Linux 7 | mod_nss | Not affected | ||
| Red Hat Enterprise Linux 7 | nss_compat_ossl | Not affected | ||
| Red Hat Enterprise Linux 7 | openldap | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=1259216mod_nss: incorrect ciphersuite parsing
4.3 Medium
CVSS2
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 8 лет назад
The NSSCipherSuite option with ciphersuites enabled in mod_nss before 1.0.12 allows remote attackers to bypass application restrictions.
CVSS3: 9.8
nvd
больше 8 лет назад
The NSSCipherSuite option with ciphersuites enabled in mod_nss before 1.0.12 allows remote attackers to bypass application restrictions.
CVSS3: 9.8
debian
больше 8 лет назад
The NSSCipherSuite option with ciphersuites enabled in mod_nss before ...
CVSS3: 9.8
github
больше 3 лет назад
The NSSCipherSuite option with ciphersuites enabled in mod_nss before 1.0.12 allows remote attackers to bypass application restrictions.
4.3 Medium
CVSS2