Vulnerability & Exploit Database

Displaying entries 1 - 10 of 13 in total

Results for: CVE-2015-3240 Back to search

Gentoo Linux: CVE-2015-3240: Libreswan: Multiple Vulnerabilities Vulnerability

  • Severity: 4
  • Published: November 09, 2015

The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cause a denial of service (assertion failure and daemon restart) via a zero DH g^x value in a KE payload in a IKE packet.

Cent OS: CVE-2015-3240: CESA-2015:1979 (libreswan) Vulnerability

  • Severity: 4
  • Published: November 09, 2015

The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cause a denial of service (assertion failure and daemon restart) via a zero DH g^x value in a KE payload in a IKE packet.

RHSA-2015:1979: libreswan security and enhancement update Vulnerability

  • Severity: 4
  • Published: November 03, 2015

Libreswan is an implementation of IPsec & IKE for Linux. IPsec is theInternet Protocol Security and uses strong cryptography to provide bothauthentication and encryption services. These services allow you to buildsecure tunnels through untrusted networks such as virtual private network(VPN).A flaw was discovered in the way Libreswan'...

SUSE: CVE-2015-3153: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: May 01, 2015

The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information by reading the header contents.

Oracle Solaris 11: CVE-2015-3153: Vulnerability in libcurl Vulnerability

  • Severity: 5
  • Published: May 01, 2015

The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information by reading the header contents.

DSA-3240-1 curl -- security update Vulnerability

  • Severity: 5
  • Published: May 01, 2015

The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information by reading the header contents.

OS X update for curl (CVE-2015-3153) Vulnerability

  • Severity: 5
  • Published: May 01, 2015

The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information by reading the header contents.

OS X update for apache (CVE-2015-3153) Vulnerability

  • Severity: 5
  • Published: May 01, 2015

The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information by reading the header contents.