» 2016 » 5월

CVE-2000-1254

Posted on 2016년 5월 5일2016년 5월 5일 by admin

CVE-2000-1254

crypto/rsa/rsa_gen.c in OpenSSL before 0.9.6 mishandles C bitwise-shift operations that exceed the size of an expression, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging improper RSA key generation on 64-bit HP-UX platforms.

Source: CVE-2000-1254

CVE-2016-0895 (rsa_data_loss_prevention)

Posted on 2016년 5월 4일2016년 5월 5일 by admin

CVE-2016-0895 (rsa_data_loss_prevention)

EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to conduct clickjacking attacks via web-site elements with crafted transparency or opacity.

Source: CVE-2016-0895 (rsa_data_loss_prevention)

CVE-2016-0895

Posted on 2016년 5월 4일2016년 5월 4일 by admin

CVE-2016-0895

EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to conduct clickjacking attacks via web-site elements with crafted transparency or opacity.

Source: CVE-2016-0895

CVE-2016-0894 (rsa_data_loss_prevention)

Posted on 2016년 5월 4일2016년 5월 5일 by admin

CVE-2016-0894 (rsa_data_loss_prevention)

EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to bypass intended object access restrictions via a modified parameter.

Source: CVE-2016-0894 (rsa_data_loss_prevention)

CVE-2016-0894

Posted on 2016년 5월 4일2016년 5월 4일 by admin

CVE-2016-0894

EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to bypass intended object access restrictions via a modified parameter.

Source: CVE-2016-0894

CVE-2016-0893 (rsa_data_loss_prevention)

Posted on 2016년 5월 4일2016년 5월 5일 by admin

CVE-2016-0893 (rsa_data_loss_prevention)

EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to obtain sensitive information by reading error messages.

Source: CVE-2016-0893 (rsa_data_loss_prevention)

CVE-2016-0893

Posted on 2016년 5월 4일2016년 5월 4일 by admin

CVE-2016-0893

EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to obtain sensitive information by reading error messages.

Source: CVE-2016-0893

CVE-2016-0892 (rsa_data_loss_prevention)

Posted on 2016년 5월 4일2016년 5월 5일 by admin

CVE-2016-0892 (rsa_data_loss_prevention)

Cross-site scripting (XSS) vulnerability in EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Source: CVE-2016-0892 (rsa_data_loss_prevention)

CVE-2016-0892

Posted on 2016년 5월 4일2016년 5월 4일 by admin

CVE-2016-0892

Cross-site scripting (XSS) vulnerability in EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Source: CVE-2016-0892

CVE-2016-3951 (linux_kernel)

Posted on 2016년 5월 2일2016년 5월 6일 by admin

CVE-2016-3951 (linux_kernel)

Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (system crash) or possibly have unspecified other impact by inserting a USB device with an invalid USB descriptor.

Source: CVE-2016-3951 (linux_kernel)