cpe:/a:openssl:openssl:0.9.1c cpe:/a:openssl:openssl:0.9.2b cpe:/a:openssl:openssl:0.9.3 cpe:/a:openssl:openssl:0.9.3a cpe:/a:openssl:openssl:0.9.4 cpe:/a:openssl:openssl:0.9.5 cpe:/a:openssl:openssl:0.9.5:beta1 cpe:/a:openssl:openssl:0.9.5:beta2 cpe:/a:openssl:openssl:0.9.5a cpe:/a:openssl:openssl:0.9.5a:beta1 cpe:/a:openssl:openssl:0.9.5a:beta2 cpe:/a:openssl:openssl:0.9.6 cpe:/a:openssl:openssl:0.9.6:beta1 cpe:/a:openssl:openssl:0.9.6:beta2 cpe:/a:openssl:openssl:0.9.6:beta3 cpe:/a:openssl:openssl:0.9.6a cpe:/a:openssl:openssl:0.9.6a:beta1 cpe:/a:openssl:openssl:0.9.6a:beta2 cpe:/a:openssl:openssl:0.9.6a:beta3 cpe:/a:openssl:openssl:0.9.6b cpe:/a:openssl:openssl:0.9.6c cpe:/a:openssl:openssl:0.9.6d cpe:/a:openssl:openssl:0.9.6e cpe:/a:openssl:openssl:0.9.6f cpe:/a:openssl:openssl:0.9.6g cpe:/a:openssl:openssl:0.9.6h cpe:/a:openssl:openssl:0.9.6i cpe:/a:openssl:openssl:0.9.6j cpe:/a:openssl:openssl:0.9.6k cpe:/a:openssl:openssl:0.9.6l cpe:/a:openssl:openssl:0.9.6m cpe:/a:openssl:openssl:0.9.7 cpe:/a:openssl:openssl:0.9.7:beta1 cpe:/a:openssl:openssl:0.9.7:beta2 cpe:/a:openssl:openssl:0.9.7:beta3 cpe:/a:openssl:openssl:0.9.7:beta4 cpe:/a:openssl:openssl:0.9.7:beta5 cpe:/a:openssl:openssl:0.9.7:beta6 cpe:/a:openssl:openssl:0.9.7a cpe:/a:openssl:openssl:0.9.7b cpe:/a:openssl:openssl:0.9.7c cpe:/a:openssl:openssl:0.9.7d cpe:/a:openssl:openssl:0.9.7e cpe:/a:openssl:openssl:0.9.7f cpe:/a:openssl:openssl:0.9.7g cpe:/a:openssl:openssl:0.9.7h cpe:/a:openssl:openssl:0.9.7i cpe:/a:openssl:openssl:0.9.7j cpe:/a:openssl:openssl:0.9.7k cpe:/a:openssl:openssl:0.9.7l cpe:/a:openssl:openssl:0.9.7m cpe:/a:openssl:openssl:0.9.8 cpe:/a:openssl:openssl:0.9.8a cpe:/a:openssl:openssl:0.9.8b cpe:/a:openssl:openssl:0.9.8c cpe:/a:openssl:openssl:0.9.8d cpe:/a:openssl:openssl:0.9.8e cpe:/a:openssl:openssl:0.9.8f cpe:/a:openssl:openssl:0.9.8g cpe:/a:openssl:openssl:0.9.8h cpe:/a:openssl:openssl:0.9.8i cpe:/a:openssl:openssl:0.9.8j cpe:/a:openssl:openssl:0.9.8k cpe:/a:openssl:openssl:0.9.8l cpe:/a:openssl:openssl:0.9.8m cpe:/a:openssl:openssl:0.9.8n cpe:/a:openssl:openssl:0.9.8o cpe:/a:openssl:openssl:0.9.8p cpe:/a:openssl:openssl:1.0.0 cpe:/a:openssl:openssl:1.0.0:beta1 cpe:/a:openssl:openssl:1.0.0:beta2 cpe:/a:openssl:openssl:1.0.0:beta3 cpe:/a:openssl:openssl:1.0.0:beta4 cpe:/a:openssl:openssl:1.0.0:beta5 cpe:/a:openssl:openssl:1.0.0a cpe:/a:openssl:openssl:1.0.0b CVE-2010-4180 2010-12-06T16:05:48.687-05:00 2017-09-18T21:31:41.487-04:00 4.3 NETWORK MEDIUM NONE NONE PARTIAL NONE http://nvd.nist.gov 2010-12-07T14:27:00.000-05:00 SECTRACK 1024822 SECUNIA 42469 SECUNIA 42473 SECUNIA 42493 SECUNIA 42571 SECUNIA 42620 SECUNIA 42811 SECUNIA 42877 SECUNIA 43169 SECUNIA 43170 SECUNIA 43171 SECUNIA 43172 SECUNIA 43173 SECUNIA 44269 BID 45164 OSVDB 69565 VUPEN ADV-2010-3120 VUPEN ADV-2010-3122 VUPEN ADV-2010-3134 VUPEN ADV-2010-3188 VUPEN ADV-2011-0032 VUPEN ADV-2011-0076 VUPEN ADV-2011-0268 APPLE APPLE-SA-2011-06-23-1 DEBIAN DSA-2141 FEDORA FEDORA-2010-18736 FEDORA FEDORA-2010-18765 HP HPSBHF02706 HP HPSBMA02658 HP HPSBMU02759 IAVM IAVM:2011-A-0149 IAVM IAVM:2011-A-0160 IAVM IAVM:2012-A-0148 IAVM IAVM:2012-A-0153 IAVM IAVM:2012-B-0038 MANDRIVA MDVSA-2010:248 REDHAT RHSA-2010:0977 REDHAT RHSA-2010:0978 REDHAT RHSA-2010:0979 REDHAT RHSA-2011:0896 SLACKWARE SSA:2010-340-01 HP SSRT100339 HP SSRT100413 HP SSRT100475 HP SSRT100613 HP SSRT100817 SUSE SUSE-SR:2011:001 SUSE SUSE-SR:2011:009 SUSE SUSE-SU-2011:0847 UBUNTU USN-1029-1 CERT-VN VU#737740 CONFIRM http://cvs.openssl.org/chngview?cn=20131 CONFIRM http://openssl.org/news/secadv_20101202.txt CONFIRM http://support.apple.com/kb/HT4723 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=659462 CONFIRM https://kb.bluecoat.com/index?page=content&id=SA53&actp=LIST SUSE openSUSE-SU-2011:0845 OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is enabled, does not properly prevent modification of the ciphersuite in the session cache, which allows remote attackers to force the downgrade to an unintended cipher via vectors involving sniffing network traffic to discover a session identifier.