← voltar
CVE-2015-5965

CVE-2015-5965

EPSS 2.1%
The SSL-VPN feature in Fortinet FortiOS before 4.3.13 only checks the first byte of the TLS MAC in finished messages, which makes it easier for remote attackers to spoof encrypted content via a crafted MAC field.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://security.gentoo.org/glsa/201508-01https://vivaldi.net/en-US/blogs/entry/the-poodle-has-friendshttp://www.fortiguard.com/advisory/FG-IR-15-016/http://www.securityfocus.com/bid/76065http://www.securitytracker.com/id/1033256