Show filters
144 Total Results
Displaying 121-130 of 144
Sort by:
Attacker Value
Unknown

CVE-2016-6883

Disclosure Date: March 03, 2017 (last updated November 26, 2024)
MatrixSSL before 3.8.3 configured with RSA Cipher Suites allows remote attackers to obtain sensitive information via a Bleichenbacher variant attack.
0
0
Attacker Value
Unknown

CVE-2016-6886

Disclosure Date: January 13, 2017 (last updated November 25, 2024)
The pstm_reverse function in MatrixSSL before 3.8.4 allows remote attackers to cause a denial of service (invalid memory read and crash) via a (1) zero value or (2) the key's modulus for the secret key during RSA key exchange.
0
0
Attacker Value
Unknown

CVE-2016-6887

Disclosure Date: January 13, 2017 (last updated November 25, 2024)
The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via a CRT attack.
0
0
Attacker Value
Unknown

CVE-2016-6885

Disclosure Date: January 13, 2017 (last updated November 25, 2024)
The pstm_exptmod function in MatrixSSL before 3.8.4 allows remote attackers to cause a denial of service (invalid free and crash) via a base zero value for the modular exponentiation.
0
0
Attacker Value
Unknown

CVE-2016-8671

Disclosure Date: January 13, 2017 (last updated November 08, 2023)
The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-6887.
0
0
Attacker Value
Unknown

CVE-2016-6891

Disclosure Date: January 05, 2017 (last updated November 25, 2024)
MatrixSSL before 3.8.6 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted ASN.1 Bit Field primitive in an X.509 certificate.
0
0
Attacker Value
Unknown

CVE-2016-6892

Disclosure Date: January 05, 2017 (last updated November 25, 2024)
The x509FreeExtensions function in MatrixSSL before 3.8.6 allows remote attackers to cause a denial of service (free of unallocated memory) via a crafted X.509 certificate.
0
0
Attacker Value
Unknown

CVE-2016-6890

Disclosure Date: January 05, 2017 (last updated November 25, 2024)
Heap-based buffer overflow in MatrixSSL before 3.8.6 allows remote attackers to execute arbitrary code via a crafted Subject Alt Name in an X.509 certificate.
0
0
Attacker Value
Unknown

CVE-2016-2307

Disclosure Date: October 05, 2016 (last updated November 25, 2024)
American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions application before 3.0.0 and Aspect-Matrix Building Automation Front-End Solutions application allow remote attackers to read arbitrary files via unspecified vectors, as demonstrated by the configuration file.
0
0
Attacker Value
Unknown

CVE-2016-2308

Disclosure Date: October 05, 2016 (last updated November 25, 2024)
American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions application before 3.0.0 and Aspect-Matrix Building Automation Front-End Solutions application store passwords in cleartext, which allows remote attackers to obtain sensitive information by reading a file.
0
0
View More Topics  < Previous  Next >