Page 2 of 7 results (0.004 seconds)

CVSS: 1.2EPSS: 0%CPEs: 1EXPL: 0

CVE-2002-1563

https://notcve.org/view.php?id=CVE-2002-1563

stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) via SIGCHLD signal handler race conditions that cause an inconsistency in the child counter. stunnerl 4.04 permite a atacantes causar una denegación de servicio (caída) debida a condiciones de carrera en el manejador de la señal SIGCHLD que causa una inconsistencia en el contador de hijos. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000736 http://marc.info/?l=bugtraq&m=104247606910598 http://marc.info/?l=bugtraq&m=106029168514511&w=2 http://marc.info/?l=stunnel-users&m=103600188215117&w=2 http://www.linuxsecurity.com/advisories/engarde_advisory-3535.html http://www.redhat.com/support/errata/RHSA-2003-221.html http://www.redhat.com/support/errata/RHSA-2003-223.html http://www.securityfocus.com/bid/6592 https://access.redhat.com/security/cve& •

CVSS: 5.0EPSS: 0%CPEs: 35EXPL: 0

CVE-2003-0147

https://notcve.org/view.php?id=CVE-2003-0147

OpenSSL does not use RSA blinding by default, which allows local and remote attackers to obtain the server's private key by determining factors using timing differences on (1) the number of extra reductions during Montgomery reduction, and (2) the use of different integer multiplication algorithms ("Karatsuba" and normal). • ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-014.0.txt ftp://patches.sgi.com/support/free/security/advisories/20030501-01-I http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0130.html http://crypto.stanford.edu/~dabo/papers/ssl-timing.pdf http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000625 http://marc.info/?l=bugtraq&m=104766550528628&w=2 http://marc.info/?l=bugtraq&m=104792570615648&w=2 http://marc.info/?l=bugtraq&m=104819602408063&w=2 •