Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2010-2939

Disclosure Date: August 17, 2010
CVE-2010-2939
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted private key with an invalid prime. NOTE: some sources refer to this as a use-after-free issue.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • openssl

Products

  • openssl 0.9.7,
  • openssl 0.9.8,
  • openssl 1.0.0a

References

Canonical
CVE-2010-2939 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2939)
Advisory
[openssl-dev] 20100808 Re: openssl-1.0.0a and glibc detected sthg ;) (http://www.mail-archive.com/openssl-dev@openssl.org/msg28049.html)
HPSBMA02662 (http://marc.info?l=bugtraq&m=130331363227777&w=2)
SECUNIA-42413 (http://secunia.com/advisories/42413)
SECUNIA-40906 (http://secunia.com/advisories/40906)
DSA-2100 (http://www.debian.org/security/2010/dsa-2100)
[oss-security] 20100812 Re: CVE Request: openssl double free (http://www.openwall.com/lists/oss-security/2010/08/11/6)
20100807 openssl-1.0.0a (http://seclists.org/fulldisclosure/2010/Aug/84)
ADV-2010-2229 (http://www.vupen.com/english/advisories/2010/2229)
ADV-2010-2038 (http://www.vupen.com/english/advisories/2010/2038)
SECTRACK-1024296 (http://securitytracker.com/id?1024296)
USN-1003-1 (http://www.ubuntu.com/usn/USN-1003-1)
SECUNIA-42309 (http://secunia.com/advisories/42309)
ADV-2010-3077 (http://www.vupen.com/english/advisories/2010/3077)
SECUNIA-43312 (http://secunia.com/advisories/43312)
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html
http://www.vmware.com/security/advisories/VMSA-2011-0003.html
[openssl-dev] 20100807 openssl-1.0.0a and glibc detected sthg ;) (http://www.mail-archive.com/openssl-dev@openssl.org/msg28043.html)
[openssl-dev] 20100807 Re: openssl-1.0.0a and glibc detected sthg ;) (http://www.mail-archive.com/openssl-dev@openssl.org/msg28045.html)
20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX (http://www.securityfocus.com/archive/1/516397/100/0/threaded)
SECUNIA-41105 (http://secunia.com/advisories/41105)
Miscellaneous
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.668793
http://security.FreeBSD.org/advisories/FreeBSD-SA-10:10.openssl.asc
http://marc.info/?l=bugtraq&m=130331363227777&w=2
http://www.mail-archive.com/openssl-dev%40openssl.org/msg28043.html
http://www.mail-archive.com/openssl-dev%40openssl.org/msg28045.html
http://www.mail-archive.com/openssl-dev%40openssl.org/msg28049.html

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis