oval:org.mitre.oval:def:7549
| Definition Id: oval:org.mitre.oval:def:7549 | |||
| Oval ID: | oval:org.mitre.oval:def:7549 | ||
| Title: | OpenJDK MessageDigest.isEqual Introduces Timing Attack Vulnerabilities | ||
| Description: | The MessageDigest.isEqual function in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to spoof HMAC-based digital signatures, and possibly bypass authentication, via unspecified vectors related to "timing attack vulnerabilities," aka Bug Id 6863503. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2009-3875 | Version: | 5 |
| Platform(s): | VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:5506 | |||
| Oval ID: | oval:org.mitre.oval:def:5506 | ||
| Title: | VMware ESX Server 4.0 is installed | ||
| Description: | The operating system installed on the system is VMware ESX Server 4.0. | ||
| Family: | unix | Class: | inventory |
| Reference(s): | cpe:/o:vmware:esx:4.0 | Version: | 3 |
| Platform(s): | VMware ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:7549 | |||
