oval:org.mitre.oval:def:11617

Definition Id: oval:org.mitre.oval:def:11617

Oval ID:	oval:org.mitre.oval:def:11617
Title:	AIX OpenSSL session renegotiation vulnerability
Description:	The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3555	Version:	3
Platform(s):	IBM AIX 5.2 IBM AIX 5.3 IBM AIX 6.1	Product(s):
Definition Synopsis:
OS check IBM AIX 5.3 is installed AND openssl.base versions less than 0.9.8.1102 OR OS based check IBM AIX 5.3 is installed AND openssl.base FIPS capable versions less than 12.9.8.1102 OR OS check openssl.base versions less than 0.9.8.1102 AND IBM AIX Version 6.1 check AND IBM AIX Version 6.1 check OR openssl.base FIPS capable versions less than 12.9.8.1102 AND IBM AIX Version 6.1 check AND IBM AIX Version 6.1 check OR IBM AIX 5.2 is installed AND openssl.base versions less than 0.9.8.805

Definition Id: oval:org.mitre.oval:def:5325

Oval ID:	oval:org.mitre.oval:def:5325
Title:	IBM AIX 5.3 is installed
Description:	The operating system installed on the system is IBM AIX 5.3.
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ibm:aix:5.3	Version:	2
Platform(s):	IBM AIX 5.3	Product(s):
Definition Synopsis:
IBM AIX version is greater than or equal 5.3.0.0 AND IBM AIX version is less than 5.4.0.0
Referenced By:
oval:org.mitre.oval:def:11617 oval:org.mitre.oval:def:11617

Definition Id: oval:org.mitre.oval:def:5189

Oval ID:	oval:org.mitre.oval:def:5189
Title:	IBM AIX 5.2 is installed
Description:	The operating system installed on the system is IBM AIX 5.2.
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ibm:aix:5.2	Version:	2
Platform(s):	IBM AIX 5.2	Product(s):
Definition Synopsis:
IBM AIX version is greater than or equal 5.2.0.0 AND IBM AIX version is less than 5.3.0.0
Referenced By:
oval:org.mitre.oval:def:11617

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0137s

Facebook rss twitter linkedin mail