CVE-2004-0079 | AttackerKB

Description

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

7.5 High

Impact Score:

3.6

Exploitability Score:

3.9

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

None

Integrity (I):

None

Availability (A):

High

Products

References

Canonical

CVE-2004-0079 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0079)

BID-9899 (http://www.securityfocus.com/bid/9899)

Advisory

FEDORA-2005-1042 (http://www.redhat.com/archives/fedora-announce-list/2005-October/msg00087.html)

SSRT4717 (http://marc.info?l=bugtraq&m=108403806509920&w=2)

http://www.redhat.com/support/errata/RHSA-2004-121.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2621

SECUNIA-17381 (http://secunia.com/advisories/17381)

FEDORA-2004-095 (http://fedoranews.org/updates/FEDORA-2004-095.shtml)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9779

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A975

SUNALERT-57524 (http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57524)

http://www.novell.com/linux/security/advisories/2004_07_openssl.html

http://lists.apple.com/mhonarc/security-announce/msg00045.html

http://www.openssl.org/news/secadv_20040317.txt

TA04-078A (http://www.us-cert.gov/cas/techalerts/TA04-078A.html)

SECUNIA-17401 (http://secunia.com/advisories/17401)

http://www.redhat.com/support/errata/RHSA-2005-829.html

http://support.avaya.com/elmodocs2/security/ASA-2005-239.htm

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A870

http://www.redhat.com/support/errata/RHSA-2005-830.html

GLSA-200403-03 (http://security.gentoo.org/glsa/glsa-200403-03.xml)

SECUNIA-11139 (http://secunia.com/advisories/11139)

http://www.redhat.com/support/errata/RHSA-2004-120.html

20040317 New OpenSSL releases fix denial of service attacks [17 March 2004] (http://marc.info?l=bugtraq&m=107953412903636&w=2)

http://support.lexmark.com/index?page=content&id=TE88&locale=EN&userlocale=EN_US

APPLE-SA-2005-08-15 (http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html)

SECUNIA-17398 (http://secunia.com/advisories/17398)

http://www.redhat.com/support/errata/RHSA-2004-139.html

XF-openssl-dochangecipherspec-dos(15505) (https://exchange.xforce.ibmcloud.com/vulnerabilities/15505)

20040317 Cisco OpenSSL Implementation Vulnerability (http://www.cisco.com/warp/public/707/cisco-sa-20040317-openssl.shtml)

http://docs.info.apple.com/article.html?artnum=61798

VU#288574 (http://www.kb.cert.org/vuls/id/288574)

DSA-465 (http://www.debian.org/security/2004/dsa-465)

APPLE-SA-2005-08-17 (http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html)

SECUNIA-18247 (http://secunia.com/advisories/18247)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5770

Miscellaneous

ESA-20040317-003 (http://www.linuxsecurity.com/advisories/engarde_advisory-4135.html)

http://www.mandriva.com/security/advisories?name=MDKSA-2004:023

http://distro.conectiva.com.br/atualizacoes?id=a&anuncio=000834

http://www.uniras.gov.uk/vuls/2004/224012/index.htm

O-101 (http://www.ciac.org/ciac/bulletins/o-101.shtml)

http://www.slackware.org/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.455961

2004-0012 (http://www.trustix.org/errata/2004/0012)

Rapid7

Technical Analysis