Lucene search

[email protected]CVE-2004-0112

HistoryNov 23, 2004 - 5:00 a.m.

CVE-2004-0112

2004-11-2305:00:00

CWE-125

[email protected]

web.nvd.nist.gov

openssl

ssl

tls

handshake

denial of service

vulnerability

cve-2004-0112

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.8%

JSON

The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read.

Affected configurations

NVD

Node

ciscofirewall_services_module

ciscofirewall_services_moduleMatch1.1.2

ciscofirewall_services_moduleMatch1.1.3

ciscofirewall_services_moduleMatch1.1_\(3.005\)

ciscofirewall_services_moduleMatch2.1_\(0.208\)

hpaaa_server

hpapache-based_web_serverMatch2.0.43.00

hpapache-based_web_serverMatch2.0.43.04

symantecclientless_vpn_gateway_4400Match5.0

Node

ciscociscoworks_common_management_foundationMatch2.1

ciscociscoworks_common_servicesMatch2.2

avayaconverged_communications_serverMatch2.0

avayasg200Match4.4

avayasg200Match4.31.29

avayasg203Match4.4

avayasg203Match4.31.29

avayasg208

avayasg208Match4.4

avayasg5Match4.2

avayasg5Match4.3

avayasg5Match4.4

applemac_os_xMatch10.3.3

applemac_os_x_serverMatch10.3.3

freebsdfreebsdMatch4.8

freebsdfreebsdMatch4.8releng

freebsdfreebsdMatch4.9

freebsdfreebsdMatch5.1

freebsdfreebsdMatch5.1release

freebsdfreebsdMatch5.1releng

freebsdfreebsdMatch5.2

freebsdfreebsdMatch5.2.1release

hphp-uxMatch8.05

hphp-uxMatch11.00

hphp-uxMatch11.11

hphp-uxMatch11.23

openbsdopenbsdMatch3.3

openbsdopenbsdMatch3.4

redhatenterprise_linuxMatch3.0advanced_server

redhatenterprise_linuxMatch3.0enterprise_server

redhatenterprise_linuxMatch3.0workstation_server

redhatenterprise_linux_desktopMatch3.0

redhatlinuxMatch7.2

redhatlinuxMatch7.3

redhatlinuxMatch8.0

scoopenserverMatch5.0.6

scoopenserverMatch5.0.7

Node

ciscoiosMatch12.1\(11\)e

ciscoiosMatch12.1\(11b\)e

ciscoiosMatch12.1\(11b\)e12

ciscoiosMatch12.1\(11b\)e14

ciscoiosMatch12.1\(13\)e9

ciscoiosMatch12.1\(19\)e1

ciscoiosMatch12.2\(14\)sy

ciscoiosMatch12.2\(14\)sy1

ciscoiosMatch12.2sy

ciscoiosMatch12.2za

AND

4dwebstarMatch4.0

4dwebstarMatch5.2

4dwebstarMatch5.2.1

4dwebstarMatch5.2.2

4dwebstarMatch5.2.3

4dwebstarMatch5.2.4

4dwebstarMatch5.3

4dwebstarMatch5.3.1

avayaintuity_audixlx

avayaintuity_audixMatch5.1.46

avayaintuity_audixMatchs3210

avayaintuity_audixMatchs3400

avayavsuMatch5

avayavsuMatch5x

avayavsuMatch100_r2.0.1

avayavsuMatch500

avayavsuMatch2000_r2.0.1

avayavsuMatch5000_r2.0.1

avayavsuMatch7500_r2.0.1

avayavsuMatch10000_r2.0.1

checkpointfirewall-1vsx-ng-ai

checkpointfirewall-1Match2.0gx

checkpointfirewall-1Matchnext_generation_fp0

checkpointfirewall-1Matchnext_generation_fp1

checkpointfirewall-1Matchnext_generation_fp2

checkpointprovider-1Match4.1

checkpointprovider-1Match4.1sp1

checkpointprovider-1Match4.1sp2

checkpointprovider-1Match4.1sp3

checkpointprovider-1Match4.1sp4

checkpointvpn-1Matchnext_generation_fp0

checkpointvpn-1Matchnext_generation_fp1

checkpointvpn-1Matchnext_generation_fp2

checkpointvpn-1Matchvsx_ng_with_application_intelligence

ciscoaccess_registrar

ciscoapplication_and_content_networking_software

ciscocss_secure_content_acceleratorMatch1.0

ciscocss_secure_content_acceleratorMatch2.0

ciscocss11000_content_services_switch

ciscookena_stormwatchMatch3.2

ciscopix_firewallMatch6.2.2_.111

ciscothreat_response

ciscowebnsMatch6.10

ciscowebnsMatch6.10_b4

ciscowebnsMatch7.1_0.1.02

ciscowebnsMatch7.1_0.2.06

ciscowebnsMatch7.2_0.0.03

ciscowebnsMatch7.10

ciscowebnsMatch7.10_.0.06s

dellbsafe_ssl-jMatch3.0

dellbsafe_ssl-jMatch3.0.1

dellbsafe_ssl-jMatch3.1

forcepointstonegateMatch1.5.17

forcepointstonegateMatch1.5.18

forcepointstonegateMatch1.6.2

forcepointstonegateMatch1.6.3

forcepointstonegateMatch1.7

forcepointstonegateMatch1.7.1

forcepointstonegateMatch1.7.2

forcepointstonegateMatch2.0.1

forcepointstonegateMatch2.0.4

forcepointstonegateMatch2.0.5

forcepointstonegateMatch2.0.6

forcepointstonegateMatch2.0.7

forcepointstonegateMatch2.0.8

forcepointstonegateMatch2.0.9

forcepointstonegateMatch2.1

forcepointstonegateMatch2.2

forcepointstonegateMatch2.2.1

forcepointstonegateMatch2.2.4

hpwbemMatcha.01.05.08

hpwbemMatcha.02.00.00

hpwbemMatcha.02.00.01

litespeedtechlitespeed_web_serverMatch1.0.1

litespeedtechlitespeed_web_serverMatch1.0.2

litespeedtechlitespeed_web_serverMatch1.0.3

litespeedtechlitespeed_web_serverMatch1.1

litespeedtechlitespeed_web_serverMatch1.1.1

litespeedtechlitespeed_web_serverMatch1.2rc1

litespeedtechlitespeed_web_serverMatch1.2rc2

litespeedtechlitespeed_web_serverMatch1.2.1

litespeedtechlitespeed_web_serverMatch1.2.2

litespeedtechlitespeed_web_serverMatch1.3-

litespeedtechlitespeed_web_serverMatch1.3rc1

litespeedtechlitespeed_web_serverMatch1.3rc2

litespeedtechlitespeed_web_serverMatch1.3rc3

neoterisinstant_virtual_extranetMatch3.0

neoterisinstant_virtual_extranetMatch3.1

neoterisinstant_virtual_extranetMatch3.2

neoterisinstant_virtual_extranetMatch3.3

neoterisinstant_virtual_extranetMatch3.3.1

novelledirectoryMatch8.0

novelledirectoryMatch8.5

novelledirectoryMatch8.5.12a

novelledirectoryMatch8.5.27

novelledirectoryMatch8.6.2

novelledirectoryMatch8.7

novelledirectoryMatch8.7.1

novelledirectoryMatch8.7.1sp1

novellimanagerMatch1.5

novellimanagerMatch2.0

opensslopensslMatch0.9.6c

opensslopensslMatch0.9.6d

opensslopensslMatch0.9.6e

opensslopensslMatch0.9.6f

opensslopensslMatch0.9.6g

opensslopensslMatch0.9.6h

opensslopensslMatch0.9.6i

opensslopensslMatch0.9.6j

opensslopensslMatch0.9.6k

opensslopensslMatch0.9.7

opensslopensslMatch0.9.7beta1

opensslopensslMatch0.9.7beta2

opensslopensslMatch0.9.7beta3

opensslopensslMatch0.9.7a

opensslopensslMatch0.9.7b

opensslopensslMatch0.9.7c

redhatopensslMatch0.9.6-15i386

redhatopensslMatch0.9.6b-3i386

redhatopensslMatch0.9.7a-2i386

redhatopensslMatch0.9.7a-2i386_dev

redhatopensslMatch0.9.7a-2i386_perl

sgipropackMatch2.3

sgipropackMatch2.4

sgipropackMatch3.0

stonesoftserverclusterMatch2.5

stonesoftserverclusterMatch2.5.2

stonesoftstonebeat_fullclusterMatch1_2.0

stonesoftstonebeat_fullclusterMatch1_3.0

stonesoftstonebeat_fullclusterMatch2.0

stonesoftstonebeat_fullclusterMatch2.5

stonesoftstonebeat_fullclusterMatch3.0

stonesoftstonebeat_securityclusterMatch2.0

stonesoftstonebeat_securityclusterMatch2.5

stonesoftstonebeat_webclusterMatch2.0

stonesoftstonebeat_webclusterMatch2.5

tarantellatarantella_enterpriseMatch3.20

tarantellatarantella_enterpriseMatch3.30

tarantellatarantella_enterpriseMatch3.40

vmwaregsx_serverMatch2.0

vmwaregsx_serverMatch2.0.1_build_2129

vmwaregsx_serverMatch2.5.1

vmwaregsx_serverMatch2.5.1_build_5336

vmwaregsx_serverMatch3.0_build_7592

avayas8300Matchr2.0.0

avayas8300Matchr2.0.1

avayas8500Matchr2.0.0

avayas8500Matchr2.0.1

avayas8700Matchr2.0.0

avayas8700Matchr2.0.1

bluecoatproxysg

ciscocall_manager

ciscocontent_services_switch_11500

ciscogss_4480_global_site_selector

ciscogss_4490_global_site_selector

ciscomds_9000

ciscosecure_content_acceleratorMatch10000

securecomputingsidewinderMatch5.2

securecomputingsidewinderMatch5.2.0.01

securecomputingsidewinderMatch5.2.0.02

securecomputingsidewinderMatch5.2.0.03

securecomputingsidewinderMatch5.2.0.04

securecomputingsidewinderMatch5.2.1

securecomputingsidewinderMatch5.2.1.02

suncrypto_accelerator_4000Match1.0

bluecoatcacheos_ca_saMatch4.1.10

bluecoatcacheos_ca_saMatch4.1.12

ciscopix_firewall_softwareMatch6.0

ciscopix_firewall_softwareMatch6.0\(1\)

ciscopix_firewall_softwareMatch6.0\(2\)

ciscopix_firewall_softwareMatch6.0\(3\)

ciscopix_firewall_softwareMatch6.0\(4\)

ciscopix_firewall_softwareMatch6.0\(4.101\)

ciscopix_firewall_softwareMatch6.1

ciscopix_firewall_softwareMatch6.1\(1\)

ciscopix_firewall_softwareMatch6.1\(2\)

ciscopix_firewall_softwareMatch6.1\(3\)

ciscopix_firewall_softwareMatch6.1\(4\)

ciscopix_firewall_softwareMatch6.1\(5\)

ciscopix_firewall_softwareMatch6.2

ciscopix_firewall_softwareMatch6.2\(1\)

ciscopix_firewall_softwareMatch6.2\(2\)

ciscopix_firewall_softwareMatch6.2\(3\)

ciscopix_firewall_softwareMatch6.2\(3.100\)

ciscopix_firewall_softwareMatch6.3

ciscopix_firewall_softwareMatch6.3\(1\)

ciscopix_firewall_softwareMatch6.3\(2\)

ciscopix_firewall_softwareMatch6.3\(3.102\)

ciscopix_firewall_softwareMatch6.3\(3.109\)

CPENameOperatorVersion
cisco:firewall_services_modulecisco firewall services moduleeq*
cisco:firewall_services_modulecisco firewall services moduleeq1.1.2
cisco:firewall_services_modulecisco firewall services moduleeq1.1.3
cisco:firewall_services_modulecisco firewall services moduleeq1.1_\(3.005\)
cisco:firewall_services_modulecisco firewall services moduleeq2.1_\(0.208\)
hp:aaa_serverhp aaa servereq*
hp:apache-based_web_serverhp apache-based web servereq2.0.43.00
hp:apache-based_web_serverhp apache-based web servereq2.0.43.04
symantec:clientless_vpn_gateway_4400symantec clientless vpn gateway 4400eq5.0

CPE	Name	Operator	Version
cisco:firewall_services_module	cisco firewall services module	eq	*
cisco:firewall_services_module	cisco firewall services module	eq	1.1.2
cisco:firewall_services_module	cisco firewall services module	eq	1.1.3
cisco:firewall_services_module	cisco firewall services module	eq	1.1_\(3.005\)
cisco:firewall_services_module	cisco firewall services module	eq	2.1_\(0.208\)
hp:aaa_server	hp aaa server	eq	*
hp:apache-based_web_server	hp apache-based web server	eq	2.0.43.00
hp:apache-based_web_server	hp apache-based web server	eq	2.0.43.04
symantec:clientless_vpn_gateway_4400	symantec clientless vpn gateway 4400	eq	5.0