5.9
CVSSv3

CVE-2016-0800

Published: 01/03/2016 Updated: 25/01/2022
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2
VMScore: 449
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Vulnerability Summary

The SSLv2 protocol, as used in OpenSSL prior to 1.0.1s and 1.0.2 prior to 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote malicious users to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a "DROWN" attack.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

openssl openssl 1.0.2d

openssl openssl 1.0.2c

openssl openssl 1.0.2b

openssl openssl 1.0.1q

openssl openssl 1.0.1p

openssl openssl 1.0.1i

openssl openssl 1.0.1h

openssl openssl 1.0.1a

openssl openssl 1.0.1

openssl openssl 1.0.2a

openssl openssl 1.0.2

openssl openssl 1.0.1o

openssl openssl 1.0.1n

openssl openssl 1.0.1g

openssl openssl 1.0.1f

openssl openssl 1.0.1m

openssl openssl 1.0.1l

openssl openssl 1.0.1e

openssl openssl 1.0.1d

openssl openssl 1.0.2f

openssl openssl 1.0.2e

openssl openssl 1.0.1r

openssl openssl 1.0.1k

openssl openssl 1.0.1j

openssl openssl 1.0.1c

openssl openssl 1.0.1b

pulsesecure client -

pulsesecure steel belted radius -

Vendor Advisories

A denial of service flaw was found in the way OpenSSL handled SSLv2 handshake messages A remote attacker could use this flaw to cause a TLS/SSL server using OpenSSL to exit on a failed assertion if it had both the SSLv2 protocol and EXPORT-grade cipher suites enabled (CVE-2015-0293) It was discovered that the SSLv2 servers using OpenSSL accepted ...
A padding oracle flaw was found in the Secure Sockets Layer version 20 (SSLv2) protocol An attacker can potentially use this flaw to decrypt RSA-encrypted cipher text from a connection using a newer SSL/TLS protocol version, allowing them to decrypt such connections This cross-protocol attack is publicly referred to as DROWN (CVE-2016-0800) Pri ...
Support My AccountForcepoint Support Site Guest User (Logout)Community My Account Visitor(login)Community DROWN Vulnerability CVE-2016-0800 Article Number: 000008628 Products: Data Security, Email Security Gat ...
Nessus is potentially impacted by several vulnerabilities in OpenSSL that were recently disclosed and fixed Note that due to the time involved in doing a full analysis of each issue, Tenable has opted to upgrade the included version of OpenSSL as a precaution, and to save time The issues include: CVE-2016-0800 Secure Sockets Layer Version 2 (SSL ...
<!-- Start - Changes for Security Advisory Channel --> Security Advisory ID SYMSA1351 Initial Publication Date: Advisory Status: Advisory Severity: CVSS Base Score: Legacy ID 7 Mar 2016 Open High CVSS v2: 100 SA117 ...
Table of Contents• Description • Affected Products and Components • Mitigation and Upgrades • Vulnerability Descriptions and Ratings • Multiple vulnerabilities in OpenSSL including DROWN (CVE-2016-0800) (SPL-110363, SPL-115028, SPL-115027, SPL-115026, SPL-115025) • Splunk Web Denial of Service via HTTP Header (SPL-102960, SPL-102961, SP ...
Oracle Solaris Third Party Bulletin - January 2016 Description The Oracle Solaris Third Party Bulletin announces patches for one or more security vulnerabilities fixed in third party software that is included in Oracle Solaris distributions Starting January 20, 2015, Third Party Bulletins are released on the same day when Oracle Critical Patch Up ...
Oracle Solaris Third Party Bulletin - April 2016 Description The Oracle Solaris Third Party Bulletin announces patches for one or more security vulnerabilities fixed in third party software that is included in Oracle Solaris distributions Starting January 20, 2015, Third Party Bulletins are released on the same day when Oracle Critical Patch Upda ...
Oracle VM Server for x86 Bulletin - July 2016 Description The Oracle VM Server for x86 Bulletin lists all CVEs that had been resolved and announced in Oracle VM Server for x86 Security Advisories (OVMSA) in the last one month prior to the release of the bulletin Oracle VM Server for x86 Bulletins are published on the same day ...
Oracle Linux Bulletin - January 2016 Description The Oracle Linux Bulletin lists all CVEs that had been resolved and announced in Oracle Linux Security Advisories (ELSA) in the last one month prior to the release of the bulletin Oracle Linux Bulletins are published on the same day as Oracle Critical Patch Updates are relea ...
Oracle Critical Patch Update Advisory - April 2016 Description A Critical Patch Update (CPU) is a collection of patches for multiple security vulnerabilities Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous Critical Patch Update advisory ...
Oracle Critical Patch Update Advisory - January 2018 Description A Critical Patch Update is a collection of patches for multiple security vulnerabilities Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previou ...
Oracle Critical Patch Update Advisory - July 2016 Description A Critical Patch Update (CPU) is a collection of patches for multiple security vulnerabilities Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous C ...

Mailing Lists

Orion Elite Hidden IP Browser Pro versions 10 through 79 have insecure versions of Tor and OpenSSL included and also suffer from man-in-the-middle vulnerabilities ...

Nmap Scripts

sslv2-drown

Determines whether the server supports SSLv2, what ciphers it supports and tests for CVE-2015-3197, CVE-2016-0703 and CVE-2016-0800 (DROWN)

nmap -sV --script=sslv2-drown <target>

443/tcp open https | sslv2-drown: | ciphers: | SSL2_DES_192_EDE3_CBC_WITH_MD5 | SSL2_IDEA_128_CBC_WITH_MD5 | SSL2_RC2_128_CBC_WITH_MD5 | SSL2_RC4_128_WITH_MD5 | SSL2_DES_64_CBC_WITH_MD5 | forced_ciphers: | SSL2_RC2_128_CBC_EXPORT40_WITH_MD5 | SSL2_RC4_128_EXPORT40_WITH_MD5 | vulns: | CVE-2016-0800: | title: OpenSSL: Cross-protocol attack on TLS using SSLv2 (DROWN) | state: VULNERABLE | ids: | CVE:CVE-2016-0800 | description: | The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and | other products, requires a server to send a ServerVerify message before establishing | that a client possesses certain plaintext RSA data, which makes it easier for remote | attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding | oracle, aka a "DROWN" attack. | | refs: | https://www.openssl.org/news/secadv/20160301.txt |_ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0800

Github Repositories

Download metasploitable v2 from here sourceforgenet/projects/metasploitable/files/Metasploitable2/ #We are going to hack metasploitable2 in many ways ################################################################################################ First we have to scan our target IP using Nmap: nmap -p0-1000 -T4 -A 192168190166 -P0-1000 - scaning top 1000 ports Sta

MassBleed SSL Vulnerability Scanner

MassBleed SSL Vulnerability Scanner USAGE: sh massbleedsh [CIDR|IP] [single|port|subnet] [port] [proxy] ABOUT: This script has four main functions with the ability to proxy all connections: To mass scan any CIDR range for OpenSSL vulnerabilities via port 443/tcp (https) (example: sh massbleedsh 19216800/16) To scan any CIDR range for OpenSSL vulnerabilities via any cust

MassBleed SSL Vulnerability Scanner USAGE: sh massbleedsh [CIDR|IP] [single|port|subnet] [port] [proxy] ABOUT: This script has four main functions with the ability to proxy all connections: To mass scan any CIDR range for OpenSSL vulnerabilities via port 443/tcp (https) (example: sh massbleedsh 19216800/16) To scan any CIDR range for OpenSSL vulnerabilities via any cust

MassBleed SSL Vulnerability Scanner USAGE: sh massbleedsh [CIDR|IP] [single|port|subnet] [port] [proxy] ABOUT: This script has four main functions with the ability to proxy all connections: To mass scan any CIDR range for OpenSSL vulnerabilities via port 443/tcp (https) (example: sh massbleedsh 19216800/16) To scan any CIDR range f

tls protocol source

TLS protocol TLS protocol in wiki TLS10 RFC2246 TLS11 RFC4346 TLS12 RFC5246 TLS13 RFC8446 RFC6125 Representation and Verification of Domain-Based Application Service Identity within Internet Public Key Infrastructure Using X509 (PKIX) Certificates in the Context of Transport Layer Security (TLS) Cryptograph Number Theory Greatest Common Divisor(gcd) Definition: A com

Halon MTA changelog

Halon MTA changelog 54 | 53 | 52 Halon is a fast, flexible and powerful MTA for demanding uses such as large-scale email services New installations are deployed by downloading a disk image or virtual machine template Existing systems can be easily updated, after having familiarised yourself with the release notes There is an RSS feed available 54-p1 Released on 2020-08

1 A2SV? Auto Scanning to SSL Vulnerability HeartBleed, CCS Injection, SSLv3 POODLE, FREAK etc A Support Vulnerability - CVE-2007-1858] Anonymous Cipher - CVE-2012-4929] CRIME(SPDY) - CVE-2014-0160] CCS Injection - CVE-2014-0224] HeartBleed - CVE-2014-3566] SSLv3 POODLE - CVE-2015-0204] FREAK Attack - CVE-2015-4000] LOGJAM Attack - CVE-2016-0800] SSLv2 DROWN B Dev Plan -

Escaneo automático a vulnerabilidad de SSL HeartBleed, CCS Injection, SSLv3 POODLE, FREAK

1 A2SV? Auto Scanning to SSL Vulnerability HeartBleed, CCS Injection, SSLv3 POODLE, FREAK etc A Support Vulnerability - CVE-2007-1858] Anonymous Cipher - CVE-2012-4929] CRIME(SPDY) - CVE-2014-0160] CCS Injection - CVE-2014-0224] HeartBleed - CVE-2014-3566] SSLv3 POODLE - CVE-2015-0204] FREAK Attack - CVE-2015-4000] LOGJAM Attack - CVE-2016-0800] SSLv2 DROWN B Dev Plan -

1 A2SV? Auto Scanning to SSL Vulnerability HeartBleed, CCS Injection, SSLv3 POODLE, FREAK etc A Support Vulnerability - CVE-2007-1858] Anonymous Cipher - CVE-2012-4929] CRIME(SPDY) - CVE-2014-0160] CCS Injection - CVE-2014-0224] HeartBleed - CVE-2014-3566] SSLv3 POODLE - CVE-2015-0204] FREAK Attack - CVE-2015-4000] LOGJAM Attack - CVE-2016-0800] SSLv2 DROWN B Dev Plan -

Auto Scanning to SSL Vulnerability

1 A2SV? Auto Scanning to SSL Vulnerability HeartBleed, CCS Injection, SSLv3 POODLE, FREAK etc A Support Vulnerability - CVE-2007-1858] Anonymous Cipher - CVE-2012-4929] CRIME(SPDY) - CVE-2014-0160] CCS Injection - CVE-2014-0224] HeartBleed - CVE-2014-3566] SSLv3 POODLE - CVE-2015-0204] FREAK Attack - CVE-2015-4000] LOGJAM Attack - CVE-2016-0800] SSLv2 DROWN B Dev Plan -

1 A2SV? Auto Scanning to SSL Vulnerability HeartBleed, CCS Injection, SSLv3 POODLE, FREAK etc A Support Vulnerability [CVE-2007-1858] Anonymous Cipher [CVE-2012-4929] CRIME(SDPY) [CVE-2014-0160] CCS Injection [CVE-2014-0224] HeartBleed [CVE-2014-3566] SSLv3 POODLE [CVE-2015-0204] FREAK Attack [CVE-2015-4000] LOGJAM Attack [CVE-2016-0800] SSLv2 DROWN B Dev Plan [PLAN

1 A2SV? Auto Scanning to SSL Vulnerability HeartBleed, CCS Injection, SSLv3 POODLE, FREAK etc A Support Vulnerability [CVE-2007-1858] Anonymous Cipher [CVE-2012-4929] CRIME(SDPY) [CVE-2014-0160] CCS Injection [CVE-2014-0224] HeartBleed [CVE-2014-3566] SSLv3 POODLE [CVE-2015-0204] FREAK Attack [CVE-2015-4000] LOGJAM Attack [CVE-2016-0800] SSLv2 DROWN B Dev Plan [PLAN

1 A2SV? Auto Scanning to SSL Vulnerability HeartBleed, CCS Injection, SSLv3 POODLE, FREAK etc A Support Vulnerability - CVE-2007-1858] Anonymous Cipher - CVE-2012-4929] CRIME(SPDY) - CVE-2014-0160] CCS Injection - CVE-2014-0224] HeartBleed - CVE-2014-3566] SSLv3 POODLE - CVE-2015-0204] FREAK Attack - CVE-2015-4000] LOGJAM Attack - CVE-2016-0800] SSLv2 DROWN

Shell script for testing the SSL/TLS Protocols

HTTPSScan Shell script for testing the SSL/TLS Protocols Check for SSL/TLS Vulnerabilities: SSLv2 (CVE-2011-1473) (CVE-2016-0800) TLS CRIME (CVE-2012-4929) RC4 (CVE-2013-2566) Heartbleed (CVE-2014-0160) Poodle (CVE-2014-3566) FREAK (CVE-2015-0204) Logjam (CVE-2015-4000) Weak Ciphers Cygwin dependencies: ncurses Usage: bash httpsscansh [target] [port] [option] Options: all,

A2SV = Auto Scanning to SSL Vulnerability HeartBleed, CCS Injection, SSLv3 POODLE, FREAK... etc Support Vulnerability [CVE-2007-1858] Anonymous Cipher [CVE-2012-4929] CRIME(SPDY) [CVE-2014-0160] CCS Injection [CVE-2014-0224] HeartBleed [CVE-2014-3566] SSLv3 POODLE [CVE-2015-0204] FREAK Attack [CVE-2015-4000] LOGJAM Attack [CVE-2016-0800] SSLv2 D…

A2SV--SSL-VUL-Scan A2SV = Auto Scanning to SSL Vulnerability HeartBleed, CCS Injection, SSLv3 POODLE, FREAK etc Support Vulnerability [CVE-2007-1858] Anonymous Cipher [CVE-2012-4929] CRIME(SPDY) [CVE-2014-0160] CCS Injection [CVE-2014-0224] HeartBleed [CVE-2014-3566] SSLv3 POODLE [CVE-2015-0204] FREAK Attack [CVE-2015-4000] LOGJAM Attack [CVE-2016-0800] SSLv2 DROWN Installat

Hardware hacking: D-Link DIR-655 Content Basic info Disassembly Port scanning TCP enumeration scan TCP vulnerability scann UDP enumeration scan UDP vulnerability scann Web management Exploitation TFTP directory traversaln CVE-2015-3036 Basic info Vendor product page: eudlinkcom/uk/en/products/dir-655-wireless-n-gigabit-router Product released: around 2010 La

Домашнее задание к занятию "39 Элементы безопасности информационных систем" - yakovlev_vs 1 Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей Решение Bitwarden плагин устано

39_1 1,2 Зарегистрировался в BitWarden, подключил Google Authenticator 3 Сгенерировал самоподписанный сертификат, настроил apache2 4 Проверил сайт bioreformedru pashi@pashi-ub2004-test:/etc/apache2/conf-enabled/testsslsh$ /testsslsh -U --sneaky bioreformedru ####################

Домашнее задание к занятию "39 Элементы безопасности информационных систем" 1 Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей Решение: 2 Установите Google authenticator н

Домашнее задание к занятию "39 Элементы безопасности информационных систем" Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей Ответ: Установил, зарегистрировался

Репозиторий для домашних заданий по курсу DevOps 39 ДЗ 39 Элементы безопасности информационных систем Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей Ответ: Установите Go

"39 Элементы безопасности информационных систем" 1 Выполнено 2 Выполнено 3 Systemctl status apache2 ● apache2service - The Apache HTTP Server Loaded: loaded (/lib/systemd/system/apache2service; enabled; vendor preset: enabled) Active: active (running) since Mon 2022-03-07 08:17:33 UTC;

1Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей 2Установите Google authenticator на мобильный телефон Настройте вход в Bitwarden акаунт через Google authenticator OTP 3Установите apache2, сген

Домашнее задание к занятию "39 Элементы безопасности информационных систем" 1 Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей Ответ: Сделал ##2 Установите Google auth

devops-netology Домашнее задание к занятию "39 Элементы безопасности информационных систем" 1 Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей 2 Установите Google authenticator н

Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей ![image](user-imagesgithubusercontentcom/87232557/134864125-e91e71c3-0d31-4030-8983-ff94d978f6eepng) 2Установите Google authenticator на мобильны

Start 2021-10-13 07:42:02 1042249171:443 (netologyru) Further IP addresses: 1042248171 172674383 2606:4700:10::ac43:2b53 2606:4700:10::6816:30ab 2606:4700:10::6816:31ab rDNS (1042249171): -- Service detected: HTTP Testing vulnerabilities Heartbleed (CVE-2014-0160) not vulnerable (OK), no heartbeat extension CCS (CVE-2014-

Выполнено Выполнено Устанавливаем apache2, включаем поддержку ssl: sudo apt install apache2 sudo a2enmod ssl sudo systemctl restart apache2 Генерируем самоподписанный сертификат: sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 \ -keyout /etc

devops-netology Домашнее задание к занятию «21 Системы контроля версий» В будущем благодаря добавленному файлу gitignore в директории Terraform при использовании команды commit внутри директории terraform, будут игнориров

Домашнее задание к занятию "39 Элементы безопасности информационных систем" (1) Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей Решение (2) Установите Google authenticator н

1) 2) 3) 4)Клонируем репозиторий testssl: git clone --depth 1 githubcom/drwetter/testsslshgit Задаем права запуска на файл testsslsh: vagrant@vagrant:~/testsslsh$ chmod +x /testsslsh Проверяем произвольный сайт на у

Task 1 Установите Bitwarden плагин для браузера Зарегистрируйтесь и сохраните несколько паролей Для эксперимента выбираю браузер Firefox Устанавливаю расширение "Bitwarden - free password manager" Далее регистрирую аккаунт

11 Введение в DevOps Задание №1 - Подготовка рабочей среды jsonnet md sh tr yaml Задание №2 - Описание жизненного цикла задачи (разработки нового функционала) Менеджер ставит перед разработчиками задачу на разработку

Домашнее задание к занятию "39 Элементы безопасности информационных систем" 1 Установите Bitwarden плагин для браузера Зарегистрируйтесь и сохраните несколько паролей Решение: Но для себя я уже давно исп

devops-netology Hello, World!!! В файле gitignore: - игнорируются все скрытые файлы "terraform" с любой вложенностью - игнорируются все файлы заканчиващиеся на tfstate или содержат в названии tfstate - игнорируется файл crashlog - игн

Домашнее задание к занятию "39 Элементы безопасности информационных систем" 1 Установите Bitwarden плагин для браузера Зарегистрируйтесь и сохраните несколько паролей 2 Установите Google authenticator на мобиль

Домашнее задание к занятию "39 Элементы безопасности информационных систем" Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей Ответ Установите Google authenticator на мо

devops-netology «24 Инструменты Git» git show aefea commit aefead2207ef7e2aa5dc81a34aedf0cad4c32545 git show 85024d3 tag: v01223 3 git checkout b8d720 git log --pretty=format:'%h %s' –graph 56cd7859e0, 9ea88f22fc git log --oneline v01223v01

Домашнее задание к занятию «39 Элементы безопасности информационных систем» 1,2 Bitwarden установлен в браузер Chromium, успешно настроена двухфакторная ауткнтификация vag Устанавливаем apache2 и генерируем се

39 Элементы безопасности информационных систем Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей Успешно зарегистрировался и добавил 3 реквизита аутентификации

Домашнее задание 39 Скриншот установленного плагина Bitwarden с сохраненным паролем находится в файле bitwardenpng Скриншот настроек OTP находится в файле bitwarden-otpjpg Использовалось приложение Яндексключ Создание

Плагин поставил, зарегистрировался, создал пару записей: (githubcom/Danil054/devops-netology/blob/main/pics/bitwarden1png) На телефон установил authenticator, в профиле настроил двухфакторную аутентификацию и активировал в приложении

devops-netology Домашнее задание к занятию «11 Введение в DevOps» Благодаря добавленному файлу gitignore будут проигнорированы следующие файлы в каталоге terraform: все файлы в директориях и поддиректориях terraform; файлы

DevOpsStudents -Netology -HelloNetology Домашнее задание к занятию "39 Элементы безопасности информационных систем" 1)Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей 2)Установи

DevOps-netology - учебный курс для DevOps инженеров Это публичный репозиторий, созданный для обучения и отработки навыков Если вы DevOps специалист, то полезной информации для вас тут нет Здесь будут опубликованы некото

1 Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей 2 Установите Google authenticator на мобильный телефон Настройте вход в Bitwarden акаунт через Google authenticator OTP 3 Установите apache2, сге

Ответы на задание к занятию "39 Элементы безопасности информационных систем" Настроил проброс портов для ВМ nano Vagrantfile configvmnetwork "forwarded_port", guest: 80, host: 8080, host_ip: "127001" configvmnetwork "forwarded_por

11 Введение в DevOps — Аронов Леонид Задание №2 - Описание жизненного цикла задачи (разработки нового функционала) Формулировка описания нового функционала Продукт-менеджер совместно с клиентом или отдело

32 Работа в терминале, лекция 2 1 Какого типа команда cd? Попробуйте объяснить, почему она именно такого типа; опишите ход своих мыслей, если считаете что она могла бы быть другого типа cd - встроенная команда об

Домашнее задание к занятию "39 Элементы безопасности информационных систем" 1 Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей 2 Установите Google authenticator на мобил

1 2 3 vagrant Vagrantconfigure("2") do |config| configvmdefine "master" do |subconfig| subconfigvmbox = "bento/ubuntu-2004" subconfigvmhostname = "master" subconfigvmnetwork :private_network, ip: "10001" end configvmdefine "web" do |subconfig| subconfigvmbox = "bento/ubun

39 Элементы безопасности информационных систем Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей Зарегестрировался и установил ibbco/939DrZ8 У

devops-netology Kirill Nelyubov Ответы на задание к занятию "39 Элементы безопасности информационных систем": Выполнено Принт-скрин "Google authenticator"а сделать не получается, доступ запрещён root@vagrant:~/testsslsh# /tests

devops-netology Домашнее задание к занятию "39 Элементы безопасности информационных систем" 1 Установите Bitwarden плагин для браузера Зарегестрируйтесь и сохраните несколько паролей 2Установите Google authenticator н

satellite-host-cve A script to list CVE's that are either installable or applicable for a host (or all hosts) within one organization Altough Satellite6 gives a nice way to handle errata, there are customers who need to have a view based on CVE's and not on security errata What does code do It lists all CVE's for a host, mapped across it's lifecycle path

Recent Articles

SSL's DROWN not as bad as Heartbleed, still a security ship wreck
The Register • John Leyden • 02 Mar 2016

Just set SSLv2 on fire

Security experts are split on how easy it is for hackers to exploit the high-profile DROWN vulnerability on insecure systems.
One-third of all HTTPS websites are potentially vulnerable to the DROWN attack, which was disclosed on Tuesday. DROWN (which stands for Decrypting RSA with Obsolete and Weakened eNcryption) is a serious design flaw that affects network services that rely on SSL and TLS. An attacker can exploit support for the obsolete SSLv2 protocol – which modern clients have pha...

SSL's DROWN not as bad as Heartbleed, still a security ship wreck
The Register • John Leyden • 02 Mar 2016

Just set SSLv2 on fire

Security experts are split on how easy it is for hackers to exploit the high-profile DROWN vulnerability on insecure systems.
One-third of all HTTPS websites are potentially vulnerable to the DROWN attack, which was disclosed on Tuesday. DROWN (which stands for Decrypting RSA with Obsolete and Weakened eNcryption) is a serious design flaw that affects network services that rely on SSL and TLS. An attacker can exploit support for the obsolete SSLv2 protocol – which modern clients have pha...

One-third of all HTTPS websites open to DROWN attack
The Register • John Leyden • 01 Mar 2016

Hackers can break TLS using SSLv2

Security researchers have discovered a new technique for deciphering the contents of supposedly secure communications.
The DROWN attack - it has already got a name, like recent high profile crypto attacks Lucky13, BEAST, and POODLE - is a “cross-protocol attack that can decrypt passively collected TLS sessions from up-to-date clients”.
One version of the attack exploits a combination of thus far unnoticed protocol flaws in SSLv2 to develop a new and stronger variant of the earlie...

One-third of all HTTPS websites open to DROWN attack
The Register • John Leyden • 01 Mar 2016

Hackers can break TLS using SSLv2

Security researchers have discovered a new technique for deciphering the contents of supposedly secure communications.
The DROWN attack - it has already got a name, like recent high profile crypto attacks Lucky13, BEAST, and POODLE - is a “cross-protocol attack that can decrypt passively collected TLS sessions from up-to-date clients”.
One version of the attack exploits a combination of thus far unnoticed protocol flaws in SSLv2 to develop a new and stronger variant of the earlie...

References

CWE-310CWE-200https://drownattack.comhttps://access.redhat.com/security/vulnerabilities/drownhttps://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.htmlhttps://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150800http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1519.htmlhttp://www.securityfocus.com/bid/91787https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05086877https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05141441https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05073516https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176765https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05143554https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05096953http://marc.info/?l=bugtraq&m=146133665209436&w=2http://marc.info/?l=bugtraq&m=146108058503441&w=2http://marc.info/?l=bugtraq&m=145983526810210&w=2http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlhttp://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.htmlhttp://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.htmlhttp://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.htmlhttps://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05307589http://www.securityfocus.com/bid/83733http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.htmlhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160330-01-openssl-enhttps://www.openssl.org/news/secadv/20160301.txthttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.htmlhttps://www.kb.cert.org/vuls/id/583776https://security.gentoo.org/glsa/201603-15http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.htmlhttp://kb.juniper.net/InfoCenter/index?page=content&id=JSA10722http://support.citrix.com/article/CTX208403http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.htmlhttps://ics-cert.us-cert.gov/advisories/ICSA-16-103-03http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.htmlhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-opensslhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.htmlhttp://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-623229.pdfhttp://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.htmlhttps://kc.mcafee.com/corporate/index?page=content&id=SB10154http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05386804https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_ushttps://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03726en_ushttp://www.securitytracker.com/id/1035133https://security.netapp.com/advisory/ntap-20160301-0001/https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.aschttp://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.htmlhttps://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixeshttps://cert-portal.siemens.com/productcert/pdf/ssa-623229.pdfhttps://www.arista.com/en/support/advisories-notices/security-advisories/1260-security-advisory-18https://www.theregister.co.uk/2016/03/01/drown_tls_protocol_flaw/https://nvd.nist.govhttps://ics-cert.us-cert.gov/advisories/ICSA-16-103-03https://www.kb.cert.org/vuls/id/583776