<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Vulnwatch: [CIRT.DK - Advisory] Novell iManager 2.0.2 ASN.1 Parsing vulnerability in Apache module

[CIRT.DK - Advisory] Novell iManager 2.0.2 ASN.1 Parsing vulnerability in Apache module

From: CIRT.DK Mailinglists <mailinglists_at_cirt.dk>
Date: Sun, 12 Jun 2005 23:57:21 +0200

ID: NOVL102200
Domain: primus
Solution Class: Novell
Fact: Novell iManager 2.02
Fact: Apache 2.0.48
Fact: OpenSSL 0.9.7
Symptom: OpenSSL ASN.1 Parsing vulnerability in Apache
Symptom: Server stops responding and an error occurs
Cause: Multiple vulnerabilities were reported in the ASN.1 parsing code in
OpenSSL.
These issues could be exploited to cause a denial of service or to execute
arbitrary code.

Fix: These vulnerabilites are corrected in OpenSSL 0.9.7d.
iManager 2.5 ships with OpenSSL 0.9.7d - to resolve the vulnerability
upgrading is suggested.

Read the full advisory at http://www.cirt.dk
Received on Jun 13 2005

This message: [ Message body ]
Next message: CIRT.DK Mailinglists: "[CIRT.DK - Advisory] Novell eDirectory 8.7.3 DOS Device name Denial of Service"
Previous message: ZATAZ Audits: "xmysqladmin insecure temporary file creation"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos