RSS   Vulnerabilities for 'Glassfish enterprise server'   RSS

2015-03-31
 
CVE-2015-2808

CWE-310
 

 
The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the "Bar Mitzvah" issue.

 
2013-03-15
 
CVE-2013-2566

CWE-310
 

 
The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases, which makes it easier for remote attackers to conduct plaintext-recovery attacks via statistical analysis of ciphertext in a large number of sessions that use the same plaintext.

 

 >>> Vendor: SUN 199 Products
Solaris
Sunos
NFS
JAVA
Cobalt raq
Rpc.ruserd
Cobalt raq 2
Cobalt raq 3i
Sparc
Web-based enterprise management
Solstice adminsuite
Forte
Netbeans developer
Openwindows
Solstice backup
Solaris isp server
Staroffice
Workshop
Java system web server
Solaris answerbook2
Hotjava browser
Iplanet certificate management system
JDK
Cluster
Chilisoft
Sun ftp
Javaserver web dev kit
Iplanet web server
Sunvts
Netdynamics
Java plug-in
JRE
Iplanet directory server
Management+center
SDK
Cobalt raq 4
One application server
Sun pci ii driver
I-runbook
One web server
Linux
Cobalt raq xtr
Sunone starter kit
Java web start
Ray server software
Solaris pc netlink
Patchpro
Enterprise authentication mechanism
One directory server
Sun fire
JMF
J2EE
Change manager
Crypto accelerator 4000
SEAM
Java system calendar server
Dtmail
Java desktop system
Java enterprise system
Java system application server
Enterprise storage manager
Storedge 3310 scsi array
Storedge 3510 fc array
Java system web proxy server
Patch manager
JSSE
Netra 1280
Sunforum
Storedge qfs
Storedge sam-qfs
Storeedge performance suite
Storeedge utilization suite
Iplanet messaging server
One messaging server
RTE
Storedge enterprise backup software
J2SE
Javamail
Storedge 6130 arrays
Java system directory proxy server
Java system directory server
One administration server
Java system communications express
Java communications services delegated administrator
Wbem services
Grid engine
Java system access manager
N1 grid engine
Java studio enterprise
N1 system manager
Storage automated diagnostic environment
Java system content delivery server
Secure global desktop
NSS
Java system messaging server
Iplanet messaging server messenger express
Java system messenger express
Chainkey java code protection
Java dynamic management kit
Java web console
See all Products for Vendor SUN


Copyright 2019, cxsecurity.com

 

Back to Top