Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
EMC Secure Remote Services Virtual Edition (ESRS VE) 3.x before 3.06 does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC Secure Remote Services Virtual Edition 加密问题漏洞
Vulnerability Description
EMC Secure Remote Services Virtual Edition(ESRS VE)是美国易安信(EMC)公司的一套远程服务虚拟版软件。该软件用于在EMC客户服务和用户的EMC产品和解决方案之间提供远程连接。 ESRS VE 3.06之前3.x版本中存在安全漏洞,该漏洞源于程序没有正确验证SSL端的X.509证书。攻击者可借助特制的证书利用该漏洞实施中间人攻击,伪造服务器,获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A