WEB APPLICATION VULNERABILITIES Standard & Premium

OpenSSL Cryptographic Issues Vulnerability (CVE-2011-4576)

Description

The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which might allow remote attackers to obtain sensitive information by decrypting the padding data sent by an SSL peer.

Remediation

References

Related Vulnerabilities

WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.17)

WordPress Plugin WP Download Codes Cross-Site Scripting (2.5.1)

WordPress Plugin Like Button Rating-LikeBtn Server-Side Request Forgery (2.6.31)

WordPress Plugin Microblog Poster SQL Injection (1.6.0)

WordPress Plugin Captcha by BestWebSoft SQL Injection (4.1.4)

Severity

Medium

Classification

CVE-2011-4576

Tags

Missing Update Known Vulnerabilities