Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2011-3207
Description:crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past.
Test IDs: 1.3.6.1.4.1.25623.1.0.70208   1.3.6.1.4.1.25623.1.0.70213   1.3.6.1.4.1.25623.1.0.70454   1.3.6.1.4.1.25623.1.0.122063   1.3.6.1.4.1.25623.1.0.863838   1.3.6.1.4.1.25623.1.0.870633   1.3.6.1.4.1.25623.1.0.120514   1.3.6.1.4.1.25623.1.0.112953   1.3.6.1.4.1.25623.1.0.112954  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2011-3207
http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065744.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065712.html
http://lists.fedoraproject.org/pipermail/package-announce/2012-November/092905.html
HPdes Security Advisory: HPSBMU02752
http://marc.info/?l=bugtraq&m=133226187115472&w=2
HPdes Security Advisory: SSRT100802
http://marc.info/?l=bugtraq&m=133226187115472&w=2
http://www.mandriva.com/security/advisories?name=MDVSA-2011:137
RedHat Security Advisories: RHSA-2011:1409
http://www.redhat.com/support/errata/RHSA-2011-1409.html
http://www.securitytracker.com/id?1026012
http://secunia.com/advisories/45956
http://secunia.com/advisories/57353




© 1998-2021 E-Soft Inc. All rights reserved.