SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips
 

Vulnerability Note VU#561275

OpenSSL servers contain a remotely exploitable buffer overflow vulnerability during the SSL3 handshake process

Overview

OpenSSL is an open-source implementation of the Secure Sockets Layer (SSL) protocol. A remotely exploitable vulnerability exists in OpenSSL servers that could lead to the execution of arbitrary code on the system

I. Description

Servers running OpenSSL pre-release version 0.9.7 with Kerberos enabled, contain a remotely exploitable buffer overflow vulnerability. This vulnerability can be exploited by a malicious client sending a malformed key during the SSLv3 handshake process with the server.

II. Impact

A remote attacker may be able to execute arbitrary code on the server with the privileges of the exploited application or service.

III. Solution

OpenSSL Clients should apply the patches provided by your vendors, or upgrade to OpenSSL 0.9.6e. Note that applications statically linking to OpenSSL libraries may need to be recompiled with the corrected version of OpenSSL.

Systems Affected
VendorStatusDate Updated
ApacheUnknown9-Aug-2002
Apache-SSLUnknown9-Aug-2002
Apple Computer Inc.Vulnerable9-Aug-2002
CovalentUnknown9-Aug-2002
DebianVulnerable9-Aug-2002
Gentoo LinuxVulnerable9-Aug-2002
Guardian DigitalVulnerable9-Aug-2002
Hewlett-Packard CompanyVulnerable9-Aug-2002
IBMVulnerable9-Aug-2002
Juniper NetworksVulnerable16-Aug-2002
Lotus Development CorporationNot Vulnerable9-Aug-2002
MandrakeSoftVulnerable23-Sep-2002
Microsoft CorporationNot Vulnerable26-Sep-2002
NCSAUnknown9-Aug-2002
NetBSDVulnerable23-Sep-2002
OpenLDAPVulnerable9-Aug-2002
OpenPKGVulnerable9-Aug-2002
OpenSSLVulnerable30-Jul-2002
OracleVulnerable9-Aug-2002
Red Hat Inc.Vulnerable9-Aug-2002
Secure Computing CorporationVulnerable30-Sep-2002
SuSEVulnerable23-Sep-2002
TrustixVulnerable9-Aug-2002

References

http://www.kb.cert.org/vuls/id/102795
http://www.kb.cert.org/vuls/id/258555
http://www.kb.cert.org/vuls/id/308891
http://www.kb.cert.org/vuls/id/748355
http://www.securityfocus.com/bid/5361
http://www.securityfocus.com/bid/5353

Credit

Thanks to A.L. Digital Ltd for discovering and reporting on this vulnerability.

This document was written by Jason A Rafail.

Other Information

Date Public07/30/2002
Date First Published07/30/2002 10:13:17 AM
Date Last Updated09/30/2002
CERT AdvisoryCA-2002-23
CVE NameCAN-2002-0657
US-CERT Technical Alerts 
Metric5.88
Document Revision27

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2002 Carnegie Mellon University
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader