Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

GoogleOSV:DSA-3489-1

HistoryFeb 23, 2016 - 12:00 a.m.

Vulners
/
Osv
/
lighttpd - security update

lighttpd - security update

2016-02-2300:00:00

Google

osv.dev

0.975 High

EPSS

Percentile

100.0%

JSON

lighttpd, a small webserver, is vulnerable to the POODLE attack via
the use of SSLv3. This protocol is now disabled by default.

For the oldstable distribution (wheezy), this problem has been fixed
in version 1.4.31-4+deb7u4.

We recommend that you upgrade your lighttpd packages.

CPENameOperatorVersion
lighttpdeq1.4.31-4
lighttpdeq1.4.31-4+deb7u1
lighttpdeq1.4.31-4+deb7u3
lighttpdeq1.4.31-4+deb7u2

Name	Operator	Version
lighttpd	eq	1.4.31-4
lighttpd	eq	1.4.31-4+deb7u1
lighttpd	eq	1.4.31-4+deb7u3
lighttpd	eq	1.4.31-4+deb7u2

References

www.debian.org/security/2016/dsa-3489

fedora 16

redhat 3

nessus 41

suse 1

openvas 21

ibm 94

centos 2

cisco 1

veracode 2

seebug 1

amazon 1

osv 1

citrix 1

f5 1

cvelist 1

hackerone 3

cert 1

freebsd 1

nvd 1

securityvulns 2

paloalto 1

threatpost 1

hp 1

ubuntucve 1

debiancve 1

fedora

[SECURITY] Fedora 19 Update: python-rhsm-1.13.6-1.fc19

2014-11-07 02:33:12

[SECURITY] Fedora 20 Update: claws-mail-3.11.1-2.fc20

2014-11-10 06:30:29

[SECURITY] Fedora 21 Update: subscription-manager-1.13.6-1.fc21

2014-11-10 06:34:40

redhat

(RHSA-2014:1653) Moderate: openssl security update

2014-10-16 00:00:00

(RHSA-2015:1546) Important: node.js security update

2015-08-04 00:00:00

(RHSA-2014:1948) Important: nss, nss-util, and nss-softokn security, bug fix, and enhancement update

2014-12-02 00:00:00

nessus

Fedora 19 : libuv-0.10.29-1.fc19 / nodejs-0.10.33-1.fc19 (2014-15390) (POODLE)

2014-12-15 00:00:00

FreeBSD : asterisk -- Asterisk Susceptibility to POODLE Vulnerability (76c7a0f5-5928-11e4-adc7-001999f8d30b) (POODLE)

2014-10-22 00:00:00

Amazon Linux AMI : openssl (ALAS-2014-426) (POODLE)

2014-10-16 00:00:00

suse

Security update for suseRegister (important)

2015-01-05 21:04:43

openvas

Fedora Update for nodejs FEDORA-2014-15411

2015-01-05 00:00:00

Debian: Security Advisory (DSA-3489-1)

2016-03-08 00:00:00

SUSE: Security Advisory (SUSE-SU-2015:0010-1)

2021-06-09 00:00:00

ibm

Security Bulletin: Vulnerability in SSLv3 affects IBM Rational ClearQuest (CVE-2014-3566)

2018-09-29 18:04:03

Security Bulletin: Vulnerability in SSLv3 affects IBM UrbanCode Deploy (CVE-2014-3566)

2018-06-17 22:31:55

Security Bulletin: A SSLv3 POODLE Attack vulnerabilities in IBM SDK for Java shipped by IBM Webshere Application Server shipped with IBM Tivoli/Security Key Lifecycle Manager (CVE-2014-3566)

2018-06-16 21:23:44

centos

openssl security update

2014-10-16 15:21:39

nss security update

2014-12-03 22:45:56

cisco

SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability

2014-10-15 18:30:00

veracode

Information Disclosure

2017-02-07 00:05:45

POODLE Attack

2017-05-03 05:12:56

seebug

SSL 3.0 POODLE（CVE-2014-3566）

2017-02-17 00:00:00

amazon

Important: openssl

2014-10-14 22:32:00

osv

lighttpd - security update

2015-07-25 00:00:00

citrix

CVE-2014-3566 - Citrix Security Advisory for SSLv3 Protocol Flaw

2014-10-14 04:00:00

K15702 : SSLv3 vulnerability CVE-2014-3566

2015-09-18 00:00:00

cvelist

CVE-2014-3566

2014-10-15 00:00:00

hackerone

New Relic: SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability

2017-03-26 19:08:23

X (Formerly Twitter): POODLE SSLv3 bug on multiple twitter smtp servers (mx3.twitter.com,199.59.148.204,199.16.156.108 and 199.59.148.204)

2017-11-09 21:44:16

Semrush: SSLv3 Poodle Attack on Ip Of semrush

2018-02-22 16:43:36

cert

POODLE vulnerability in SSL 3.0

2014-10-17 00:00:00

freebsd

davmail -- fix potential CVE-2014-3566 vulnerability (POODLE)

2014-10-27 00:00:00

nvd

CVE-2014-3566

2014-10-15 00:55:02

securityvulns

APPLE-SA-2014-10-16-2 Security Update 2014-005

2014-10-18 00:00:00

APPLE-SA-2014-10-16-5 OS X Server v2.2.5

2014-10-18 00:00:00

paloalto

SSL 3.0 MITM Attack

2014-10-20 07:00:00

threatpost

OpenSSL Releases Patch for POODLE Attack

2014-10-16 10:29:53

HPSBPI03360 rev.5 - HP LaserJet Printers and MFPs, HP OfficeJet Printers and MFPs, and HP JetDirect Networking cards using OpenSSL, Remote Disclosure of Information

2015-06-19 00:00:00

ubuntucve

CVE-2014-3566

2014-10-14 00:00:00

debiancve

CVE-2014-3566

2014-10-15 00:55:02

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.975 High

EPSS

Percentile

100.0%

JSON

Related for OSV:DSA-3489-1