CVE-2013-2566
published 2013-03-15CVE-2013-2566: The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases, which makes it easier for remote attackers to conduct…
medium5.9CVSS 3.0
AVNACHPRNUINSUCHINAN
EXPLOIT
The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases, which makes it easier for remote attackers to conduct plaintext-recovery attacks via statistical analysis of ciphertext in a large number of sessions that use the same plaintext.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| fujitsu | m10-1_firmware | >= xcp < xcp2280 | xcp2280 |
| fujitsu | m10-4_firmware | >= xcp < xcp2280 | xcp2280 |
| fujitsu | m10-4s_firmware | >= xcp < xcp2280 | xcp2280 |
| fujitsu | sparc_enterprise_m3000_firmware | >= xcp < xcp_1121 | xcp_1121 |
| fujitsu | sparc_enterprise_m4000_firmware | >= xcp < xcp_1121 | xcp_1121 |
| fujitsu | sparc_enterprise_m5000_firmware | >= xcp < xcp_1121 | xcp_1121 |
| fujitsu | sparc_enterprise_m8000_firmware | >= xcp < xcp_1121 | xcp_1121 |
| fujitsu | sparc_enterprise_m9000_firmware | >= xcp < xcp_1121 | xcp_1121 |
| mozilla | firefox | < 17.0.11 | 17.0.11 |
| mozilla | firefox | < 25.0.1 | 25.0.1 |
| mozilla | firefox | >= 24.1.0 < 24.1.1 | 24.1.1 |
| mozilla | seamonkey | < 2.22.1 | 2.22.1 |
| mozilla | thunderbird | < 24.1.1 | 24.1.1 |
| mozilla | thunderbird_esr | < 17.0.11 | 17.0.11 |
| oracle | communications_application_session_controller | 3.0.0 – 3.9.1 | — |
| oracle | http_server | — | — |
| oracle | http_server | — | — |
| oracle | http_server | — | — |
| oracle | http_server | — | — |
| oracle | http_server | — | — |
| oracle | integrated_lights_out_manager_firmware | 3.0.0 – 3.2.11 | — |