Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

None

Privileges Required

None

Attack Vector

Network

0

CVE-2016-6306

Disclosure Date: September 26, 2016 •

CVE-2016-6306 CVSS v3 Base Score: 5.9

Description

The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

5.9 Medium

Impact Score:

3.6

Exploitability Score:

2.2

Vector:

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector (AV):

Network

Attack Complexity (AC):

High

Privileges Required (PR):

None

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

None

Integrity (I):

None

Availability (A):

High

References

Canonical

CVE-2016-6306 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6306)

BID-93153 (http://www.securityfocus.com/bid/93153)

Advisory

https://access.redhat.com/errata/RHSA-2018:2185

https://access.redhat.com/errata/RHSA-2018:2186

http://rhn.redhat.com/errata/RHSA-2016-1940.html

GLSA-201612-16 (https://security.gentoo.org/glsa/201612-16)

SECTRACK-1036885 (http://www.securitytracker.com/id/1036885)

http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00013.html

https://access.redhat.com/errata/RHSA-2018:2187

http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

https://www.tenable.com/security/tns-2016-20

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312

http://www-01.ibm.com/support/docview.wss?uid=swg21995039

https://nodejs.org/en/blog/vulnerability/september-2016-security-releases

https://www.tenable.com/security/tns-2016-16

https://www.tenable.com/security/tns-2016-21

http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05302448

https://www.openssl.org/news/secadv/20160922.txt

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03856en_us

https://bto.bluecoat.com/security-advisory/sa132

https://git.openssl.org?p=openssl.git;a=commit;h=52e623c4cb06fffa9d5e75c60b34b4bc130b12e9

https://nodejs.org/en/blog/vulnerability/september-2016-security-releases/

https://git.openssl.org/?p=openssl.git;a=commit;h=52e623c4cb06fffa9d5e75c60b34b4bc130b12e9

https://kc.mcafee.com/corporate/index?page=content&id=SB10215

SUSE-SU-2017:2700 (http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html)

USN-3087-1 (http://www.ubuntu.com/usn/USN-3087-1)

SUSE-SU-2016:2469 (http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00012.html)

openSUSE-SU-2016:2537 (http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00029.html)

USN-3087-2 (http://www.ubuntu.com/usn/USN-3087-2)

SUSE-SU-2017:2699 (http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html)

openSUSE-SU-2016:2407 (http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00031.html)

20170717 Orion Elite Hidden IP Browser Pro - All Versions - Multiple Known Vulnerabilities (http://seclists.org/fulldisclosure/2017/Jul/31)

SUSE-SU-2016:2458 (http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00005.html)

https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03856en_us

DSA-3673 (http://www.debian.org/security/2016/dsa-3673)

openSUSE-SU-2016:2391 (http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00023.html)

openSUSE-SU-2018:0458 (http://lists.opensuse.org/opensuse-security-announce/2018-02/msg00032.html)

SUSE-SU-2016:2387 (http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00022.html)

https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05302448

https://support.f5.com/csp/article/K90492697

SUSE-SU-2016:2468 (http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00011.html)

openSUSE-SU-2016:2496 (http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00021.html)

SUSE-SU-2016:2394 (http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00024.html)

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170322-01-openssl-en

Miscellaneous

https://security.FreeBSD.org/advisories/FreeBSD-SA-16:26.openssl.asc

https://www.oracle.com/security-alerts/cpuapr2020.html

https://www.oracle.com/security-alerts/cpujul2020.html

https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

https://www.oracle.com/security-alerts/cpujan2020.html

https://www.oracle.com/security-alerts/cpuoct2020.html

https://www.arista.com/en/support/advisories-notices/security-advisories/1749-security-advisory-24

Rapid7

Technical Analysis