general (108) release (99) security (25) server (19) client (17) article (14) compliance (7) press (5) blog (5) kubernetes (4) infrastructure (3) email (1) ftp (1) client-side (1) australia (1) privacy (1)
2021 (12) 2020 (15) 2019 (16) 2018 (38) 2017 (15) 2016 (23) 2015 (20) 2014 (13) 2013 (3) 2012 (1) 2008 (1) 2007 (1) 2006 (1) 2005 (1) 2001 (3)
Go to all articles
SFTPPlus

SSLv3 POODLE vulnerability and SFTPPlus

Issue

In late September, a team at Google discovered a serious vulnerability in SSL 3.0, known as “POODLE”.

By exploiting this vulnerability, an attacker can gain access to data send over what is supposed to be a secured connection.

Affected protocols

SFTPPlus Server and Client are affected by SSLv3 …

security server client

Wed 22 October 2014
SFTPPlus

OpenSSL Heartbleed bug and SFTPPlus

SFTPPlus uses OpenSSL only for FTPS protocol. SFTP protocol is not affected by this bug.

OpenSSL Heartbleed bug and SFTPPlus

On Unix and Linux, SFTPPlus software use the OpenSSL library provided by the operating system. Unix and Linux operating system supported by SFTPPlus (RHEL 4, RHEL5, RHEL6, SLES 11, AIX 5.3) are not affected …

security server

Thu 17 April 2014
SFTPPlus

Security vulnerability for SSH keys authentication

Monday, 22 April 2013 - we have discovered a security vulnerability affecting SFTPPlus Server version 1.6, 1.7 and 1.8.

Due to an error in checking the SSH key signature, when SSH key authentication is used for a SFTP transfer, a user can obtain server access by using only …

server security

Mon 22 April 2013
SFTPPlus

OpenSSL DER certificate vulnerability and SFTPPlus

Last week a bug was discovered in all OpenSSL version. This bug can cause various security issues.

More information about the original vulnerability report for OpenSSL can be found from National Cyber Awareness System

A fix was already provided by the OpenSSL team as of 24 of April 2012.

Please …

security

Thu 26 April 2012
Previous Page