Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
None
Privileges Required
None
Attack Vector
Network
0

CVE-2014-0224

Disclosure Date: June 05, 2014
CVE-2014-0224 CVSS v3 Base Score: 7.4
Add MITRE ATT&CK tactics and techniques that apply to this CVE.
Initial Access
Techniques
Validation
Validated

Description

OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the “CCS Injection” vulnerability.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
7.4 High
Impact Score:
5.2
Exploitability Score:
2.2
Vector:
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Attack Vector (AV):
Network
Attack Complexity (AC):
High
Privileges Required (PR):
None
User Interaction (UI):
None
Scope (S):
Unchanged
Confidentiality (C):
High
Integrity (I):
High
Availability (A):
None

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
auxiliary/scanner/ssl/openssl_ccs
Reporter
Unknown

References

Canonical
CVE-2014-0224 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224)
Advisory
SECUNIA-59342 (http://secunia.com/advisories/59342)
SECUNIA-59669 (http://secunia.com/advisories/59669)
SECUNIA-59525 (http://secunia.com/advisories/59525)
HPSBMU03071 (http://marc.info?l=bugtraq&m=140604261522465&w=2)
SECUNIA-59004 (http://secunia.com/advisories/59004)
SECUNIA-59530 (http://secunia.com/advisories/59530)
http://www-01.ibm.com/support/docview.wss?uid=swg21675626
SECUNIA-59824 (http://secunia.com/advisories/59824)
SECUNIA-59282 (http://secunia.com/advisories/59282)
http://www.novell.com/support/kb/doc.php?id=7015300
SECUNIA-59215 (http://secunia.com/advisories/59215)
https://bugzilla.redhat.com/show_bug.cgi?id=1103586
SECUNIA-59990 (http://secunia.com/advisories/59990)
SECUNIA-59264 (http://secunia.com/advisories/59264)
SECUNIA-59454 (http://secunia.com/advisories/59454)
SECUNIA-58492 (http://secunia.com/advisories/58492)
SECUNIA-59186 (http://secunia.com/advisories/59186)
SECUNIA-59188 (http://secunia.com/advisories/59188)
SECUNIA-59126 (http://secunia.com/advisories/59126)
HPSBMU03078 (http://marc.info?l=bugtraq&m=140672208601650&w=2)
HPSBMU03089 (http://marc.info?l=bugtraq&m=140784085708882&w=2)
http://www.novell.com/support/kb/doc.php?id=7015264
http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15325.html
SECUNIA-59306 (http://secunia.com/advisories/59306)
http://rhn.redhat.com/errata/RHSA-2014-0627.html
http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0
HPSBGN03068 (http://marc.info?l=bugtraq&m=140544599631400&w=2)
http://rhn.redhat.com/errata/RHSA-2014-0626.html
SECUNIA-59190 (http://secunia.com/advisories/59190)
SECUNIA-58639 (http://secunia.com/advisories/58639)
http://www-01.ibm.com/support/docview.wss?uid=swg21678289
http://www.ibm.com/support/docview.wss?uid=swg21676877
SECUNIA-59446 (http://secunia.com/advisories/59446)
SECUNIA-59529 (http://secunia.com/advisories/59529)
SECUNIA-59445 (http://secunia.com/advisories/59445)
http://www.vmware.com/security/advisories/VMSA-2014-0012.html
SECUNIA-59589 (http://secunia.com/advisories/59589)
SECUNIA-59894 (http://secunia.com/advisories/59894)
SECUNIA-59325 (http://secunia.com/advisories/59325)
SECUNIA-59354 (http://secunia.com/advisories/59354)
http://www-01.ibm.com/support/docview.wss?uid=swg24037729
http://www-01.ibm.com/support/docview.wss?uid=swg21677131
HPSBUX03046 (http://marc.info?l=bugtraq&m=140266410314613&w=2)
SECUNIA-61254 (http://secunia.com/advisories/61254)
http://www-01.ibm.com/support/docview.wss?uid=swg21678233
SECUNIA-59447 (http://secunia.com/advisories/59447)
SECTRACK-1031594 (http://www.securitytracker.com/id/1031594)
http://www-01.ibm.com/support/docview.wss?uid=swg21676655
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=6061&myns=phmc&mync=E
SECUNIA-59223 (http://secunia.com/advisories/59223)
SECUNIA-58743 (http://secunia.com/advisories/58743)
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
SECUNIA-58719 (http://secunia.com/advisories/58719)
SECUNIA-59449 (http://secunia.com/advisories/59449)
SECUNIA-59132 (http://secunia.com/advisories/59132)
SSRT101818 (http://marc.info?l=bugtraq&m=142350350616251&w=2)
http://www-01.ibm.com/support/docview.wss?uid=isg400001843
HPSBST03098 (http://marc.info?l=bugtraq&m=140870499402361&w=2)
HPSBMU03058 (http://marc.info?l=bugtraq&m=140386311427810&w=2)
SECUNIA-59442 (http://secunia.com/advisories/59442)
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946
HPSBOV03047 (http://marc.info?l=bugtraq&m=140317760000786&w=2)
HPSBST03195 (http://marc.info?l=bugtraq&m=142805027510172&w=2)
http://www-01.ibm.com/support/docview.wss?uid=swg21676879
http://www-01.ibm.com/support/docview.wss?uid=swg24037761
http://www-01.ibm.com/support/docview.wss?uid=swg21677828
SECUNIA-59441 (http://secunia.com/advisories/59441)
HPSBMU03074 (http://marc.info?l=bugtraq&m=140621259019789&w=2)
http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_Release_Notes.pdf
HPSBMU03094 (http://marc.info?l=bugtraq&m=140852757108392&w=2)
https://filezilla-project.org/versions.php?type=server
http://www-01.ibm.com/support/docview.wss?uid=swg21676786
SECUNIA-60567 (http://secunia.com/advisories/60567)
SECUNIA-59189 (http://secunia.com/advisories/59189)
SECUNIA-59368 (http://secunia.com/advisories/59368)
http://www.mandriva.com/security/advisories?name=MDVSA-2014:106
SECUNIA-59142 (http://secunia.com/advisories/59142)
http://www-01.ibm.com/support/docview.wss?uid=swg21676478
http://www-01.ibm.com/support/docview.wss?uid=swg21676845
SECUNIA-58742 (http://secunia.com/advisories/58742)
https://www.ibm.com/support/docview.wss?uid=ssg1S1004670
http://rhn.redhat.com/errata/RHSA-2014-0624.html
SECUNIA-59602 (http://secunia.com/advisories/59602)
http://www.kerio.com/support/kerio-control/release-history
SECUNIA-59300 (http://secunia.com/advisories/59300)
SECUNIA-58930 (http://secunia.com/advisories/58930)
http://www-01.ibm.com/support/docview.wss?uid=swg21677080
SECUNIA-61815 (http://secunia.com/advisories/61815)
SECUNIA-58667 (http://secunia.com/advisories/58667)
GLSA-201407-05 (http://security.gentoo.org/glsa/glsa-201407-05.xml)
http://www-01.ibm.com/support/docview.wss?uid=swg21677390
SECUNIA-59191 (http://secunia.com/advisories/59191)
SECUNIA-59284 (http://secunia.com/advisories/59284)
SECUNIA-59444 (http://secunia.com/advisories/59444)
http://www.ibm.com/support/docview.wss?uid=swg24037783
SECUNIA-59365 (http://secunia.com/advisories/59365)
http://www-01.ibm.com/support/docview.wss?uid=swg21677695
SECUNIA-59305 (http://secunia.com/advisories/59305)
http://www-01.ibm.com/support/docview.wss?uid=swg21676529
SECUNIA-59483 (http://secunia.com/advisories/59483)
SECUNIA-58385 (http://secunia.com/advisories/58385)
20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities (http://www.securityfocus.com/archive/1/534161/100/0/threaded)
SECUNIA-59495 (http://secunia.com/advisories/59495)
http://www-01.ibm.com/support/docview.wss?uid=nas8N1020163
http://www-01.ibm.com/support/docview.wss?uid=swg21676889
FEDORA-2014-9308 (http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html)
SECUNIA-58945 (http://secunia.com/advisories/58945)
http://www-01.ibm.com/support/docview.wss?uid=isg400001841
HPSBST03106 (http://marc.info?l=bugtraq&m=141025641601169&w=2)
SECUNIA-59659 (http://secunia.com/advisories/59659)
SECUNIA-59440 (http://secunia.com/advisories/59440)
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html
SECUNIA-59429 (http://secunia.com/advisories/59429)
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
SECUNIA-59655 (http://secunia.com/advisories/59655)
SECUNIA-59370 (http://secunia.com/advisories/59370)
SECUNIA-59827 (http://secunia.com/advisories/59827)
SECUNIA-58660 (http://secunia.com/advisories/58660)
SECUNIA-59163 (http://secunia.com/advisories/59163)
SECUNIA-58716 (http://secunia.com/advisories/58716)
SECUNIA-59055 (http://secunia.com/advisories/59055)
http://www-01.ibm.com/support/docview.wss?uid=swg21676071
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095737
http://www-01.ibm.com/support/docview.wss?uid=swg21677836
SECUNIA-59437 (http://secunia.com/advisories/59437)
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095754
SECUNIA-60176 (http://secunia.com/advisories/60176)
HPSBPI03107 (http://marc.info?l=bugtraq&m=141147110427269&w=2)
SECUNIA-59101 (http://secunia.com/advisories/59101)
http://esupport.trendmicro.com/solution/en-US/1103813.aspx
SECUNIA-59374 (http://secunia.com/advisories/59374)
SECUNIA-59063 (http://secunia.com/advisories/59063)
http://www.vmware.com/security/advisories/VMSA-2014-0006.html
https://discussions.nessus.org/thread/7517
SECUNIA-59310 (http://secunia.com/advisories/59310)
http://www-01.ibm.com/support/docview.wss?uid=swg21676501
http://www-01.ibm.com/support/docview.wss?uid=swg21676536
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
http://aix.software.ibm.com/aix/efixes/security/openssl_advisory9.asc
IV61506 (http://www-01.ibm.com/support/docview.wss?uid=swg1IV61506)
SECUNIA-59502 (http://secunia.com/advisories/59502)
http://www.splunk.com/view/SP-CAAAM2D
SECUNIA-59878 (http://secunia.com/advisories/59878)
http://www.fortiguard.com/advisory/FG-IR-14-018
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html
HPSBMU03101 (http://marc.info?l=bugtraq&m=140852826008699&w=2)
http://www.ibm.com/support/docview.wss?uid=swg21676793
SECUNIA-59214 (http://secunia.com/advisories/59214)
http://www.ibm.com/support/docview.wss?uid=swg21676356
HPSBHF03088 (http://marc.info?l=bugtraq&m=140794476212181&w=2)
HPSBMU03057 (http://marc.info?l=bugtraq&m=140389274407904&w=2)
http://support.citrix.com/article/CTX140876
SECUNIA-59167 (http://secunia.com/advisories/59167)
SECUNIA-59120 (http://secunia.com/advisories/59120)
http://www-01.ibm.com/support/docview.wss?uid=swg24037732
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095757
http://www-01.ibm.com/support/docview.wss?uid=nas8N1020172
HPSBMU03053 (http://marc.info?l=bugtraq&m=140369637402535&w=2)
SECUNIA-59380 (http://secunia.com/advisories/59380)
http://www.mandriva.com/security/advisories?name=MDVSA-2014:105
SECUNIA-59460 (http://secunia.com/advisories/59460)
SECUNIA-59506 (http://secunia.com/advisories/59506)
SECUNIA-58939 (http://secunia.com/advisories/58939)
SECUNIA-59661 (http://secunia.com/advisories/59661)
SECUNIA-59514 (http://secunia.com/advisories/59514)
SECUNIA-59677 (http://secunia.com/advisories/59677)
http://rhn.redhat.com/errata/RHSA-2014-0630.html
20140605 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products (http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140605-openssl)
http://kb.juniper.net/InfoCenter/index?page=content&id=KB29195
http://rhn.redhat.com/errata/RHSA-2014-0632.html
http://www-01.ibm.com/support/docview.wss?uid=swg24037730
https://kc.mcafee.com/corporate/index?page=content&id=SB10075
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
http://www-01.ibm.com/support/docview.wss?uid=swg24037731
SECUNIA-58745 (http://secunia.com/advisories/58745)
http://www-01.ibm.com/support/docview.wss?uid=swg21676419
SECUNIA-59438 (http://secunia.com/advisories/59438)
http://www.ibm.com/support/docview.wss?uid=isg3T1020948
http://www-01.ibm.com/support/docview.wss?uid=swg21676496
SECUNIA-58714 (http://secunia.com/advisories/58714)
HPSBGN03050 (http://marc.info?l=bugtraq&m=140482916501310&w=2)
http://lists.opensuse.org/opensuse-updates/2015-02/msg00030.html
SECUNIA-59435 (http://secunia.com/advisories/59435)
HPSBHF03052 (http://marc.info?l=bugtraq&m=141658880509699&w=2)
http://www.openssl.org/news/secadv_20140605.txt
SECUNIA-58615 (http://secunia.com/advisories/58615)
HPSBST03265 (http://marc.info?l=bugtraq&m=142546741516006&w=2)
20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities (http://seclists.org/fulldisclosure/2014/Dec/23)
http://www-01.ibm.com/support/docview.wss?uid=swg21676644
SECUNIA-59231 (http://secunia.com/advisories/59231)
https://www.ibm.com/support/docview.wss?uid=ssg1S1004671
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html
http://support.apple.com/kb/HT6443
SECUNIA-59211 (http://secunia.com/advisories/59211)
SECUNIA-58433 (http://secunia.com/advisories/58433)
SECUNIA-60066 (http://secunia.com/advisories/60066)
http://dev.mysql.com/doc/relnotes/workbench/en/wb-news-6-1-7.html
https://access.redhat.com/site/blogs/766093/posts/908133
SECUNIA-59301 (http://secunia.com/advisories/59301)
SECUNIA-60522 (http://secunia.com/advisories/60522)
SECUNIA-59784 (http://secunia.com/advisories/59784)
https://kb.bluecoat.com/index?page=content&id=SA80
HPSBST03097 (http://marc.info?l=bugtraq&m=141383410222440&w=2)
20140607 Re: More OpenSSL issues (http://seclists.org/fulldisclosure/2014/Jun/38)
HPSBMU03076 (http://marc.info?l=bugtraq&m=140904544427729&w=2)
http://www.f-secure.com/en/web/labs_global/fsc-2014-6
SECUNIA-59135 (http://secunia.com/advisories/59135)
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10629
http://www-01.ibm.com/support/docview.wss?uid=swg21678167
SECUNIA-58759 (http://secunia.com/advisories/58759)
SECUNIA-59093 (http://secunia.com/advisories/59093)
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095740
http://puppetlabs.com/security/cve/cve-2014-0224
SECUNIA-59192 (http://secunia.com/advisories/59192)
FEDORA-2014-9301 (http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html)
HPSBMU03062 (http://marc.info?l=bugtraq&m=140752315422991&w=2)
SECUNIA-58579 (http://secunia.com/advisories/58579)
https://www.intersectalliance.com/wp-content/uploads/release_notes/ReleaseNotes_for_SNARE_for_MSSQL.pdf
SECUNIA-59040 (http://secunia.com/advisories/59040)
HPSBMU03056 (http://marc.info?l=bugtraq&m=140389355508263&w=2)
SECUNIA-59175 (http://secunia.com/advisories/59175)
SECUNIA-60819 (http://secunia.com/advisories/60819)
HPSBMU03051 (http://marc.info?l=bugtraq&m=140448122410568&w=2)
SECUNIA-59666 (http://secunia.com/advisories/59666)
http://www.tenable.com/blog/nessus-527-and-pvs-403-are-available-for-download
SECUNIA-58128 (http://secunia.com/advisories/58128)
HPSBMU03055 (http://marc.info?l=bugtraq&m=140431828824371&w=2)
SECUNIA-59413 (http://secunia.com/advisories/59413)
http://www-01.ibm.com/support/docview.wss?uid=swg21676334
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
http://www-01.ibm.com/support/docview.wss?uid=swg21675821
http://www-01.ibm.com/support/docview.wss?uid=swg24037870
SECUNIA-59721 (http://secunia.com/advisories/59721)
HPSBHF03145 (http://marc.info?l=bugtraq&m=141383465822787&w=2)
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095756
http://rhn.redhat.com/errata/RHSA-2014-0680.html
http://www-01.ibm.com/support/docview.wss?uid=swg21676062
SECUNIA-59012 (http://secunia.com/advisories/59012)
SECUNIA-58713 (http://secunia.com/advisories/58713)
http://www-01.ibm.com/support/docview.wss?uid=swg21673137
SECUNIA-59362 (http://secunia.com/advisories/59362)
http://www.mandriva.com/security/advisories?name=MDVSA-2015:062
http://www-01.ibm.com/support/docview.wss?uid=swg21676035
HPSBMU03070 (http://marc.info?l=bugtraq&m=140499864129699&w=2)
http://rhn.redhat.com/errata/RHSA-2014-0631.html
SECUNIA-59338 (http://secunia.com/advisories/59338)
SECUNIA-59450 (http://secunia.com/advisories/59450)
http://linux.oracle.com/errata/ELSA-2014-1053.html
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
VU#978508 (http://www.kb.cert.org/vuls/id/978508)
SECTRACK-1031032 (http://www.securitytracker.com/id/1031032)
SECUNIA-59287 (http://secunia.com/advisories/59287)
https://blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issues1
http://www-01.ibm.com/support/docview.wss?uid=swg21683332
SECUNIA-59491 (http://secunia.com/advisories/59491)
SECUNIA-59364 (http://secunia.com/advisories/59364)
https://blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issues
SECUNIA-59451 (http://secunia.com/advisories/59451)
SECUNIA-58977 (http://secunia.com/advisories/58977)
https://www.novell.com/support/kb/doc.php?id=7015271
http://www-01.ibm.com/support/docview.wss?uid=swg21676333
SECUNIA-60571 (http://secunia.com/advisories/60571)
SECUNIA-59459 (http://secunia.com/advisories/59459)
http://www-01.ibm.com/support/docview.wss?uid=swg21676833
SECUNIA-60577 (http://secunia.com/advisories/60577)
SECUNIA-59448 (http://secunia.com/advisories/59448)
https://git.openssl.org/gitweb?p=openssl.git;a=commit;h=bc8923b1ec9c467755cd86f7848c50ee8812e441
https://www.intersectalliance.com/wp-content/uploads/release_notes/ReleaseNotes_for_Snare_for_Windows.pdf
http://www.blackberry.com/btsc/KB36051
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095755
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-345106.htm
HPSBST03103 (http://marc.info?l=bugtraq&m=141164638606214&w=2)
http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004690
SECUNIA-59885 (http://secunia.com/advisories/59885)
http://www-01.ibm.com/support/docview.wss?uid=swg21677527
SECUNIA-59202 (http://secunia.com/advisories/59202)
http://rhn.redhat.com/errata/RHSA-2014-0633.html
http://www.ibm.com/support/docview.wss?uid=ssg1S1004678
SECUNIA-59375 (http://secunia.com/advisories/59375)
HPSBMU03083 (http://marc.info?l=bugtraq&m=140983229106599&w=2)
SECUNIA-59528 (http://secunia.com/advisories/59528)
SECUNIA-58337 (http://secunia.com/advisories/58337)
SECUNIA-59518 (http://secunia.com/advisories/59518)
SECUNIA-59389 (http://secunia.com/advisories/59389)
SECUNIA-59162 (http://secunia.com/advisories/59162)
SECUNIA-59383 (http://secunia.com/advisories/59383)
http://www-01.ibm.com/support/docview.wss?uid=swg21677567
http://kb.juniper.net/InfoCenter/index?page=content&id=KB29217
SECUNIA-59490 (http://secunia.com/advisories/59490)
SECUNIA-59916 (http://secunia.com/advisories/59916)
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=6060&myns=phmc&mync=E
HPSBMU03065 (http://marc.info?l=bugtraq&m=140491231331543&w=2)
http://www-01.ibm.com/support/docview.wss?uid=swg24037727
IT02314 (http://www.ibm.com/support/docview.wss?uid=swg1IT02314)
SECUNIA-59043 (http://secunia.com/advisories/59043)
SECUNIA-59347 (http://secunia.com/advisories/59347)
SECUNIA-60049 (http://secunia.com/advisories/60049)
http://www-01.ibm.com/support/docview.wss?uid=swg21676615
https://cert-portal.siemens.com/productcert/pdf/ssa-234763.pdf
HPSBMU03071 (http://marc.info/?l=bugtraq&m=140604261522465&w=2)
HPSBMU03078 (http://marc.info/?l=bugtraq&m=140672208601650&w=2)
HPSBMU03089 (http://marc.info/?l=bugtraq&m=140784085708882&w=2)
HPSBGN03068 (http://marc.info/?l=bugtraq&m=140544599631400&w=2)
HPSBUX03046 (http://marc.info/?l=bugtraq&m=140266410314613&w=2)
SSRT101818 (http://marc.info/?l=bugtraq&m=142350350616251&w=2)
HPSBST03098 (http://marc.info/?l=bugtraq&m=140870499402361&w=2)
HPSBMU03058 (http://marc.info/?l=bugtraq&m=140386311427810&w=2)
HPSBOV03047 (http://marc.info/?l=bugtraq&m=140317760000786&w=2)
HPSBST03195 (http://marc.info/?l=bugtraq&m=142805027510172&w=2)
HPSBMU03074 (http://marc.info/?l=bugtraq&m=140621259019789&w=2)
HPSBMU03094 (http://marc.info/?l=bugtraq&m=140852757108392&w=2)
HPSBST03106 (http://marc.info/?l=bugtraq&m=141025641601169&w=2)
HPSBPI03107 (http://marc.info/?l=bugtraq&m=141147110427269&w=2)
http://www.fortiguard.com/advisory/FG-IR-14-018/
HPSBMU03101 (http://marc.info/?l=bugtraq&m=140852826008699&w=2)
HPSBHF03088 (http://marc.info/?l=bugtraq&m=140794476212181&w=2)
HPSBMU03057 (http://marc.info/?l=bugtraq&m=140389274407904&w=2)
HPSBMU03053 (http://marc.info/?l=bugtraq&m=140369637402535&w=2)
HPSBGN03050 (http://marc.info/?l=bugtraq&m=140482916501310&w=2)
HPSBHF03052 (http://marc.info/?l=bugtraq&m=141658880509699&w=2)
HPSBST03265 (http://marc.info/?l=bugtraq&m=142546741516006&w=2)
HPSBST03097 (http://marc.info/?l=bugtraq&m=141383410222440&w=2)
HPSBMU03076 (http://marc.info/?l=bugtraq&m=140904544427729&w=2)
HPSBMU03062 (http://marc.info/?l=bugtraq&m=140752315422991&w=2)
HPSBMU03056 (http://marc.info/?l=bugtraq&m=140389355508263&w=2)
HPSBMU03051 (http://marc.info/?l=bugtraq&m=140448122410568&w=2)
HPSBMU03055 (http://marc.info/?l=bugtraq&m=140431828824371&w=2)
HPSBHF03145 (http://marc.info/?l=bugtraq&m=141383465822787&w=2)
HPSBMU03070 (http://marc.info/?l=bugtraq&m=140499864129699&w=2)
https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=bc8923b1ec9c467755cd86f7848c50ee8812e441
HPSBST03103 (http://marc.info/?l=bugtraq&m=141164638606214&w=2)
HPSBMU03083 (http://marc.info/?l=bugtraq&m=140983229106599&w=2)
HPSBMU03065 (http://marc.info/?l=bugtraq&m=140491231331543&w=2)
Miscellaneous
https://www.imperialviolet.org/2014/06/05/earlyccs.html
http://ccsinjection.lepidum.co.jp
https://www.arista.com/en/support/advisories-notices/security-advisories/941-security-advisory-0005

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis