5

CVE-2006-0999

The SSL server implementation in NILE.NLM in Novell NetWare 6.5 and Novell Open Enterprise Server (OES) allows a client to force the server to use weak encryption by stating that a weak cipher is required for client compatibility, which might allow remote attackers to decrypt contents of an SSL protected session.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
NovellNetware Version6.5
NovellNetware Version6.5 Updatesp1
NovellNetware Version6.5 Updatesp1.1a
NovellNetware Version6.5 Updatesp1.1b
NovellNetware Version6.5 Updatesp2
NovellNetware Version6.5 Updatesp3
NovellNetware Version6.5 Updatesp4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.22% 0.803
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
http://www.securityfocus.com/bid/64758
http://secunia.com/advisories/19324
http://securitytracker.com/id?1015799
http://support.novell.com/cgi-bin/search/searchtid.cgi?10100633.htm
http://www.securityfocus.com/bid/17176
http://www.vupen.com/english/advisories/2006/1043
http://www.osvdb.org/24048
https://exchange.xforce.ibmcloud.com/vulnerabilities/25382