Lucene search
RedhatCVELIST:CVE-2013-4508HistoryNov 08, 2013 - 2:00 a.m.
CVE-2013-4508
2013-11-0802:00:00
redhat
www.cve.org
7
lighttpd before 1.4.34, when SNI is enabled, configures weak SSL ciphers, which makes it easier for remote attackers to hijack sessions by inserting packets into the client-server data stream or obtain sensitive information by sniffing the network.
References
download.lighttpd.net/lighttpd/security/lighttpd_sa_2013_01.txt
jvn.jp/en/jp/JVN37417423/index.html
lists.opensuse.org/opensuse-updates/2014-01/msg00049.html
marc.info/?l=bugtraq&m=141576815022399&w=2
openwall.com/lists/oss-security/2013/11/04/19
redmine.lighttpd.net/issues/2525
redmine.lighttpd.net/projects/lighttpd/repository/revisions/2913/diff/
www.debian.org/security/2013/dsa-2795
Related
nvd
nvd
CVE-2013-4508
2013-11-08 04:47:22
debiancve
debiancve
CVE-2013-4508
2013-11-08 04:47:22
prion
prion
Information disclosure
2013-11-08 04:47:00
ubuntucve
ubuntucve
CVE-2013-4508
2013-11-08 00:00:00
cve
cve
CVE-2013-4508
2013-11-08 04:47:22
osv
osv
lighttpd - several
2013-11-17 00:00:00
lighttpd-1.4.37-1.6 on GA media
2024-06-15 00:00:00
nessus
nessus
Fedora 20 : lighttpd-1.4.34-3.fc20 (2014-2495)
2014-02-24 00:00:00
Fedora 19 : lighttpd-1.4.34-3.fc19 (2014-2506)
2014-02-24 00:00:00
lighttpd < 1.4.34 Multiple Vulnerabilities
2018-11-05 00:00:00
debian
debian
[SECURITY] [DSA 2795-1] lighttpd security update
2013-11-13 06:11:36
[SECURITY] [DSA 2795-1] lighttpd security update
2013-11-13 06:11:36
fedora
fedora
[SECURITY] Fedora 19 Update: lighttpd-1.4.34-3.fc19
2014-02-22 18:18:47
[SECURITY] Fedora 20 Update: lighttpd-1.4.34-3.fc20
2014-02-22 18:22:17
securityvulns
securityvulns
[SECURITY] [DSA 2795-1] lighttpd security update
2013-11-18 00:00:00
lighttpd multiple security vulnerabilities
2013-11-18 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0334)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-2795-1)
2013-11-16 00:00:00
Fedora Update for lighttpd FEDORA-2014-2506
2014-02-25 00:00:00
freebsd
freebsd
lighttpd -- multiple vulnerabilities
2013-11-28 00:00:00
mageia
mageia
Updated lighttpd packages fix multiple security vulnerbilities
2013-11-21 00:36:53
amazon
amazon
Medium: lighttpd
2014-03-06 14:57:00
gentoo
gentoo
lighttpd: Multiple vulnerabilities
2014-06-13 00:00:00
jvn
jvn
JVN#37417423: Multiple vulnerabilities in SolarView Compact
2021-02-19 00:00:00