The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote malicious users to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the "Bar Mitzvah" issue.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oracle http server 11.1.1.9.0 |
||
oracle http server 12.2.1.2.0 |
||
oracle http server 12.1.3.0.0 |
||
oracle http server 11.1.1.7.0 |
||
oracle integrated lights out manager firmware |
||
oracle communications application session controller |
||
oracle http server 12.2.1.1.0 |
||
oracle communications policy management |
||
debian debian linux 8.0 |
||
debian debian linux 7.0 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux server 5.0 |
||
redhat enterprise linux workstation 7.0 |
||
redhat satellite 5.7 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux workstation 5.0 |
||
redhat enterprise linux server aus 6.6 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux workstation 6.0 |
||
redhat enterprise linux eus 7.1 |
||
redhat enterprise linux eus 6.6 |
||
redhat enterprise linux server tus 7.3 |
||
redhat enterprise linux desktop 5.0 |
||
redhat enterprise linux server aus 7.3 |
||
redhat enterprise linux server aus 7.4 |
||
redhat enterprise linux eus 7.3 |
||
redhat enterprise linux eus 7.4 |
||
redhat enterprise linux eus 7.5 |
||
redhat enterprise linux server tus 7.6 |
||
redhat enterprise linux server aus 7.6 |
||
redhat enterprise linux eus 7.6 |
||
redhat enterprise linux eus 7.2 |
||
redhat enterprise linux server aus 7.7 |
||
redhat enterprise linux server tus 7.7 |
||
redhat enterprise linux eus 7.7 |
||
suse linux enterprise server 11 |
||
suse linux enterprise desktop 11 |
||
suse linux enterprise debuginfo 11 |
||
suse linux enterprise software development kit 11 |
||
suse linux enterprise server 10 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |
||
suse linux enterprise server 12 |
||
suse linux enterprise software development kit 12 |
||
suse linux enterprise desktop 12 |
||
suse manager 1.7 |
||
canonical ubuntu linux 15.04 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 14.04 |
||
redhat satellite 5.6 |
||
fujitsu sparc_enterprise_m3000_firmware |
||
fujitsu sparc_enterprise_m4000_firmware |
||
fujitsu sparc_enterprise_m5000_firmware |
||
fujitsu sparc_enterprise_m8000_firmware |
||
fujitsu sparc_enterprise_m9000_firmware |
||
huawei e6000_firmware - |
||
huawei e9000_firmware - |
||
huawei oceanstor_18500_firmware - |
||
huawei oceanstor_18800_firmware - |
||
huawei oceanstor_18800f_firmware - |
||
huawei oceanstor_9000_firmware - |
||
huawei oceanstor_cse_firmware - |
||
huawei oceanstor_hvs85t_firmware - |
||
huawei oceanstor_s2600t_firmware - |
||
huawei oceanstor_s5500t_firmware - |
||
huawei oceanstor_s5600t_firmware - |
||
huawei oceanstor_s5800t_firmware - |
||
huawei oceanstor_s6800t_firmware - |
||
huawei oceanstor_vis6600t_firmware - |
||
huawei quidway_s9300_firmware - |
||
huawei s7700_firmware - |
||
huawei 9700_firmware - |
||
huawei s12700_firmware - |
||
huawei s2700_firmware - |
||
huawei s3700_firmware - |
||
huawei s5700ei_firmware - |
||
huawei s5700hi_firmware - |
||
huawei s5700si_firmware - |
||
huawei s5710ei_firmware - |
||
huawei s5710hi_firmware - |
||
huawei s6700_firmware - |
||
huawei s2750_firmware - |
||
huawei s5700li_firmware - |
||
huawei s5700s-li_firmware - |
||
huawei s5720hi_firmware - |
||
huawei s5720ei_firmware - |
||
huawei te60_firmware - |
||
huawei policy center v100r003c10 |
||
huawei policy center v100r003c00 |
||
huawei smc2.0 v100r002c01 |
||
huawei smc2.0 v100r002c02 |
||
huawei smc2.0 v100r002c03 |
||
huawei smc2.0 v100r002c04 |
||
huawei ultravr v100r003c00 |
||
huawei oceanstor replicationdirector v100r003c00 |
||
ibm cognos metrics manager 10.2.1 |
||
ibm cognos metrics manager 10.2 |
||
ibm cognos metrics manager 10.1.1 |
||
ibm cognos metrics manager 10.1 |
||
ibm cognos metrics manager 10.2.2 |