CVE-2012-4605 in Oracle HTTP Serverinfo

Summary

The default configuration of the SMTP component in Websense Email Security 6.1 through 7.3 enables weak SSL ciphers in the "SurfControl plc\SuperScout Email Filter\SMTP" registry key, which makes it easier for remote attackers to obtain sensitive information by sniffing the network and then conducting a brute-force attack against encrypted session data.

Reservation

08/23/2012

Disclosure

08/23/2012

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
11817	Oracle HTTP Server OSSL information disclosure	200	Unproven	Official fix	CVE-2012-4605
6095	Websense Email Security SMTP information disclosure	200	High	Official fix	CVE-2012-4605

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!