Oval Definition:oval:org.mitre.oval:def:19039
Revision Date:2015-05-04Version:7
Title:OpenSSL vulnerability before 1.0.0c in VisualSVN Server (CVE-2010-4252)
Description:OpenSSL before 1.0.0c, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-4252
Platform(s):Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Vista
Microsoft Windows XP
Product(s):VisualSVN Server
Definition Synopsis
  • VisualSVN Server is installed
  • AND If the version of OpenSSL before 1.0.0c in VisualSVN Server
  • Check the version of OpenSSL in VisualSVN Server
  • Check if OpenSSL version is greater than or equals to 0.9.8.0 in VisualSVN Server
  • AND Check if OpenSSL version is less than or equals to 0.9.8.16 in VisualSVN Server
  • OR Check the version of OpenSSL in VisualSVN Server
  • Check if OpenSSL version is greater than or equals to 0.9.7.0 in VisualSVN Server
  • AND Check if OpenSSL version is less than or equals to 0.9.7.13 in VisualSVN Server
  • OR Check the version of OpenSSL in VisualSVN Server
  • Check if OpenSSL version is greater than or equals to 0.9.6.0 in VisualSVN Server
  • AND Check if OpenSSL version is less than or equals to 0.9.6.13 in VisualSVN Server
  • OR Check the version of OpenSSL in VisualSVN Server
  • Check if OpenSSL version is greater than or equals to 1.0.0.0 in VisualSVN Server
  • AND Check if OpenSSL is less than 1.0.0.3 in VisualSVN Server
  • OR Check if OpenSSL version is less than or equals to 0.9.6.13 in VisualSVN Server
  • OR Check if OpenSSL version equals to 0.9.1.1 in VisualSVN Server
  • OR Check if OpenSSL version equals to 0.9.2.2 in VisualSVN Server
  • OR Check if OpenSSL version equals to 0.9.3.0 in VisualSVN Server
  • OR Check if OpenSSL version equals to 0.9.3.1 in VisualSVN Server
  • OR Check if OpenSSL version equals to 0.9.4.0 in VisualSVN Server
  • OR Check if OpenSSL version equals to 0.9.5.0 in VisualSVN Server
  • OR Check if OpenSSL version equals to 0.9.5.1 in VisualSVN Server
    • BACK