Vulnerability Note VU#561275
OpenSSL servers contain a remotely exploitable buffer overflow vulnerability during the SSL3 handshake process
Overview
OpenSSL is an open-source implementation of the Secure Sockets Layer (SSL) protocol. A remotely exploitable vulnerability exists in OpenSSL servers that could lead to the execution of arbitrary code on the system
Description
Servers running OpenSSL pre-release version 0.9.7 with Kerberos enabled, contain a remotely exploitable buffer overflow vulnerability. This vulnerability can be exploited by a malicious client sending a malformed key during the SSLv3 handshake process with the server. |
Impact
A remote attacker may be able to execute arbitrary code on the server with the privileges of the exploited application or service. |
Solution
OpenSSL Clients should apply the patches provided by your vendors, or upgrade to OpenSSL 0.9.6e. Note that applications statically linking to OpenSSL libraries may need to be recompiled with the corrected version of OpenSSL. |
Systems Affected (Learn More)
| Vendor | Status | Date Notified | Date Updated |
|---|---|---|---|
| Apple Computer Inc. | Affected | 29 Jul 2002 | 09 Aug 2002 |
| Debian | Affected | 29 Jul 2002 | 09 Aug 2002 |
| Gentoo Linux | Affected | - | 09 Aug 2002 |
| Guardian Digital | Affected | 29 Jul 2002 | 09 Aug 2002 |
| Hewlett-Packard Company | Affected | 29 Jul 2002 | 09 Aug 2002 |
| IBM | Affected | 29 Jul 2002 | 09 Aug 2002 |
| Juniper Networks | Affected | 29 Jul 2002 | 16 Aug 2002 |
| MandrakeSoft | Affected | - | 23 Sep 2002 |
| NetBSD | Affected | 29 Jul 2002 | 23 Sep 2002 |
| OpenLDAP | Affected | 29 Jul 2002 | 09 Aug 2002 |
| OpenPKG | Affected | - | 09 Aug 2002 |
| OpenSSL | Affected | 22 Jul 2002 | 30 Jul 2002 |
| Oracle | Affected | 29 Jul 2002 | 09 Aug 2002 |
| Red Hat Inc. | Affected | 29 Jul 2002 | 09 Aug 2002 |
| Secure Computing Corporation | Affected | - | 30 Sep 2002 |
CVSS Metrics (Learn More)
| Group | Score | Vector |
|---|---|---|
| Base | N/A | N/A |
| Temporal | N/A | N/A |
| Environmental | N/A | N/A |
References
- http://www.kb.cert.org/vuls/id/102795
- http://www.kb.cert.org/vuls/id/258555
- http://www.kb.cert.org/vuls/id/308891
- http://www.kb.cert.org/vuls/id/748355
- http://www.securityfocus.com/bid/5361
- http://www.securityfocus.com/bid/5353
Credit
Thanks to A.L. Digital Ltd for discovering and reporting on this vulnerability.
This document was written by Jason A Rafail.
Other Information
- CVE IDs: CAN-2002-0657
- CERT Advisory: CA-2002-23
- Date Public: 30 Jul 2002
- Date First Published: 30 Jul 2002
- Date Last Updated: 30 Sep 2002
- Severity Metric: 5.88
- Document Revision: 27
Feedback
If you have feedback, comments, or additional information about this vulnerability, please send us email.
View Notes By
Report a Vulnerability
Please use the Vulnerability Reporting Form to report a vulnerability. Alternatively, you can send us email. Be sure to read our vulnerability disclosure policy.