RSS   Podatności dla 'Web filter'   RSS

2015-05-25
 
CVE-2015-0962

 
 
Barracuda Web Filter 7.x and 8.x before 8.1.0.005, when SSL Inspection is enabled, uses the same root Certification Authority certificate across different customers' installations, which makes it easier for remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging the certificate's trust relationship.

 
 
CVE-2015-0961

 
 
Barracuda Web Filter before 8.1.0.005, when SSL Inspection is enabled, does not verify X.509 certificates from upstream SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

 

 >>> Vendor: Barracuda 5 Produkty
Web filter
Barracuda load balancer adc
Load balancer
Message archiver
Network access client

Copyright 2024, cxsecurity.com

 

Back to Top