Executive Summary
| Summary | |
|---|---|
| Title | Sun Alert 201029 Sun Linux Multiple Security Vulnerabilities in OpenSSL |
| Informations | |||
|---|---|---|---|
| Name | SUN-201029 | First vendor Publication | 2010-01-20 |
| Vendor | Sun | Last vendor Modification | 2010-01-20 |
| Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 5 | Attack Range | Network |
| Cvss Impact Score | 2.9 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Product: Sun Linux 5.0 Sun Linux 5.0 OpenSSL versions 0.9.6 and earlier have two issues that may allow a remote unprivileged user to cause Denial of Service and arbitrary code execution. OpenSSL is an open source toolkit that implements Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols, as well as a general purpose cryptography library. More information is available at: Red Hat Advisory RHSA-2003:291-11 at: https://rhn.redhat.com/errata/RHSA-2003-291.html CVE CAN-2003-0543 at: http://www.security-database.com/detail.php?cve=CVE-2003-0543 CVE CAN-2003-0544 at: http://www.security-database.com/detail.php?cve=CVE-2003-0544 CERT advisory CA-2003-26 at: http://www.cert.org/advisories/CA-2003-26.html State: Resolved First released: 13-Apr-2005 |
Original Source
| Url : http://blogs.sun.com/security/entry/sun_alert_201029_sun_linux |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:4254 | |||
| Oval ID: | oval:org.mitre.oval:def:4254 | ||
| Title: | OpenSSL Integer Overflow Vulnerability | ||
| Description: | Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote attackers to cause a denial of service (crash) via an SSL client certificate with certain ASN.1 tag values. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2003-0543 | Version: | 3 |
| Platform(s): | Sun Solaris 8 Sun Solaris 9 | Product(s): | Sun Cluster |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:4574 | |||
| Oval ID: | oval:org.mitre.oval:def:4574 | ||
| Title: | OpenSSL ASN.1 Inputs Character Tracking Vulnerability | ||
| Description: | OpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in certain ASN.1 inputs, which allows remote attackers to cause a denial of service (crash) via an SSL client certificate that causes OpenSSL to read past the end of a buffer when the long form is used. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2003-0544 | Version: | 3 |
| Platform(s): | Sun Solaris 8 Sun Solaris 9 | Product(s): | Sun Cluster |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:5292 | |||
| Oval ID: | oval:org.mitre.oval:def:5292 | ||
| Title: | Multiple Vendor OpenSSL 0.9.6, 0.9.7 ASN.1 Vulnerabilities | ||
| Description: | Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote attackers to cause a denial of service (crash) via an SSL client certificate with certain ASN.1 tag values. | ||
| Family: | ios | Class: | vulnerability |
| Reference(s): | CVE-2003-0543 | Version: | 1 |
| Platform(s): | Cisco IOS | Product(s): | |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 2 |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2009-05-05 | Name : HP-UX Update for AAA Server HPSBUX00286 File : nvt/gb_hp_ux_HPSBUX00286.nasl |
| 2009-05-05 | Name : HP-UX Update for HP WEBM Services HPSBUX00288 File : nvt/gb_hp_ux_HPSBUX00288.nasl |
| 2009-05-05 | Name : HP-UX Update for BIND v920 HPSBUX00290 File : nvt/gb_hp_ux_HPSBUX00290.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 393-1 (openssl) File : nvt/deb_393_1.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 394-1 (openssl095) File : nvt/deb_394_1.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 3949 | OpenSSL ASN.1 Integer Overflow DoS A remote overflow exists in OpenSSL. OpenSSL fails to correctly handle error conditions in ASN.1 tags in SSL client certificates, resulting in a integer overflow. With a specially crafted request, an attacker can cause a denial of service in OpenSSL or an application using it, resulting in a loss of availability. |
| 3686 | OpenSSL ASN.1 Client Certificate Overflow DoS A remote overflow exists in OpenSSL. OpenSSL fails to correctly parse ASN.1 tags in OpenSSL client certificates, resulting in a buffer overflow. With a specially crafted request, an attacker can cause denial of service in OpenSSL or an application using it, resulting in a loss of availability. |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2019-09-17 | Novell iManager ASN.1 client hello parsing denial of service attempt RuleID : 51027 - Revision : 1 - Type : SERVER-OTHER |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2012-01-04 | Name : Arbitrary code could be executed on the remote server. File : openssl_0_9_7c.nasl - Type : ACT_GATHER_INFO |
| 2012-01-04 | Name : The remote server is vulnerable to a denial of service attack. File : openssl_0_9_6k.nasl - Type : ACT_GATHER_INFO |
| 2005-03-18 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHSS_29691.nasl - Type : ACT_GATHER_INFO |
| 2005-03-18 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHSS_29891.nasl - Type : ACT_GATHER_INFO |
| 2005-03-18 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHSS_29892.nasl - Type : ACT_GATHER_INFO |
| 2005-03-18 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHSS_29893.nasl - Type : ACT_GATHER_INFO |
| 2005-03-18 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHSS_30055.nasl - Type : ACT_GATHER_INFO |
| 2005-03-18 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHSS_30056.nasl - Type : ACT_GATHER_INFO |
| 2005-03-18 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHSS_30057.nasl - Type : ACT_GATHER_INFO |
| 2005-03-18 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHSS_30058.nasl - Type : ACT_GATHER_INFO |
| 2005-02-16 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_31726.nasl - Type : ACT_GATHER_INFO |
| 2005-02-16 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHSS_29690.nasl - Type : ACT_GATHER_INFO |
| 2005-02-16 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHSS_29894.nasl - Type : ACT_GATHER_INFO |
| 2004-09-29 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-394.nasl - Type : ACT_GATHER_INFO |
| 2004-09-29 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-393.nasl - Type : ACT_GATHER_INFO |
| 2004-07-31 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2003-098.nasl - Type : ACT_GATHER_INFO |
| 2004-07-25 | Name : The remote host is missing a vendor-supplied security patch File : suse_SA_2003_043.nasl - Type : ACT_GATHER_INFO |
| 2004-07-06 | Name : The remote host is using an unsupported version of Mac OS X. File : macosx_version.nasl - Type : ACT_GATHER_INFO |
| 2004-07-06 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2003-293.nasl - Type : ACT_GATHER_INFO |
| 2003-10-10 | Name : The remote host is affected by a heap corruption vulnerability. File : ssltest.nasl - Type : ACT_GATHER_INFO |
