The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases, which makes it easier for remote malicious users to conduct plaintext-recovery attacks via statistical analysis of ciphertext in a large number of sessions that use the same plaintext.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oracle communications application session controller |
||
oracle http server 11.1.1.7.0 |
||
oracle http server 11.1.1.9.0 |
||
oracle http server 12.1.3.0.0 |
||
oracle http server 12.2.1.1.0 |
||
oracle http server 12.2.1.2.0 |
||
oracle integrated lights out manager firmware |
||
fujitsu sparc_enterprise_m3000_firmware |
||
fujitsu sparc_enterprise_m4000_firmware |
||
fujitsu sparc_enterprise_m5000_firmware |
||
fujitsu sparc_enterprise_m8000_firmware |
||
fujitsu sparc_enterprise_m9000_firmware |
||
fujitsu m10-1_firmware |
||
fujitsu m10-4_firmware |
||
fujitsu m10-4s_firmware |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 13.04 |
||
canonical ubuntu linux 13.10 |
||
mozilla firefox |
||
mozilla firefox esr |
||
mozilla seamonkey |
||
mozilla thunderbird |
||
mozilla thunderbird esr |