exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

Mandriva Linux Security Advisory 2010-079
Posted Apr 19, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-079 - Irssi before 0.8.15, when SSL is used, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field or a Subject Alternative Name field of the X.509 certificate, which allows man-in-the-middle attackers to spoof IRC servers via an arbitrary certificate. core/nicklist.c in Irssi before 0.8.15 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an attempted fuzzy nick match at the instant that a victim leaves a channel. Additionally the updated packages disables the SSLv2 protocol and enables the SSLv3 and TLSv1 protocols for added security. The updated packages have been patched to correct these issues.

tags | advisory, remote, denial of service, arbitrary, spoof, protocol
systems | linux, mandriva
advisories | CVE-2010-1155, CVE-2010-1156
MD5 | 57505815ca1014aab993cdb658b35729
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
NASA's JPL Seems To Be Having A Hard Time With Security
Posted Jun 19, 2019

tags | headline, government, usa, space, flaw, nasa
Iran Claims To Have Thwarted A US Cyber Espionage Operation
Posted Jun 19, 2019

tags | headline, government, usa, cyberwar, spyware, iran
Oracle Patches Another Actively Exploited WebLogic 0-Day
Posted Jun 19, 2019

tags | headline, hacker, flaw, oracle
John Deere's Promotional USB Drive Hijacks Your Keyboard
Posted Jun 19, 2019

tags | headline, malware
Venmo Transaction Scraped In Privacy Warning To Consumers
Posted Jun 18, 2019

tags | headline, privacy, bank, cybercrime, data loss, fraud, flaw, paypal
Facebook Launches Cryptocurrency To Shake Up Global Finance
Posted Jun 18, 2019

tags | headline, bank, facebook, cryptography
US And Russia Clash Over Power Grid Hack Attacks
Posted Jun 18, 2019

tags | headline, government, usa, russia, cyberwar, scada
Smash GandCrab Tool Released To Decrypt Ransomware
Posted Jun 18, 2019

tags | headline, malware, cybercrime, fraud, cryptography
Hacker Conference Speaker Axed Over Abortion Views
Posted Jun 17, 2019

tags | headline, government, usa, conference
Exposed Database Dumps PII Of 1.6 Million Job Seekers
Posted Jun 17, 2019

tags | headline, privacy, database, data loss
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close