SecuritySpace - CVE-2014-0351

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2014-0351

Description: The FortiManager protocol service in Fortinet FortiOS before 4.3.16 and 5.x before 5.0.8 on FortiGate devices does not prevent use of anonymous ciphersuites, which makes it easier for man-in-the-middle attackers to obtain sensitive information or interfere with communications by modifying the client-server data stream.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2014-0351
BugTraq ID: 69754
http://www.securityfocus.com/bid/69754
CERT/CC vulnerability note: VU#730964
http://www.kb.cert.org/vuls/id/730964
XForce ISS Database: fortios-cve20140351-mitm(96119)
https://exchange.xforce.ibmcloud.com/vulnerabilities/96119

CVE ID:	CVE-2014-0351
Description:	The FortiManager protocol service in Fortinet FortiOS before 4.3.16 and 5.x before 5.0.8 on FortiGate devices does not prevent use of anonymous ciphersuites, which makes it easier for man-in-the-middle attackers to obtain sensitive information or interfere with communications by modifying the client-server data stream.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2014-0351 BugTraq ID: 69754 http://www.securityfocus.com/bid/69754 CERT/CC vulnerability note: VU#730964 http://www.kb.cert.org/vuls/id/730964 XForce ISS Database: fortios-cve20140351-mitm(96119) https://exchange.xforce.ibmcloud.com/vulnerabilities/96119