Lucene search

K
cveRedhatCVE-2006-3738
HistorySep 28, 2006 - 6:07 p.m.

CVE-2006-3738

2006-09-2818:07:00
CWE-119
redhat
web.nvd.nist.gov
149
cve-2006-3738
buffer overflow
ssl
openssl
nvd
remote attack vector

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

High

EPSS

0.964

Percentile

99.6%

Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.

Affected configurations

Nvd
Node
opensslopensslMatch0.9.7
OR
opensslopensslMatch0.9.7a
OR
opensslopensslMatch0.9.7b
OR
opensslopensslMatch0.9.7c
OR
opensslopensslMatch0.9.7d
OR
opensslopensslMatch0.9.7e
OR
opensslopensslMatch0.9.7f
OR
opensslopensslMatch0.9.7g
OR
opensslopensslMatch0.9.7h
OR
opensslopensslMatch0.9.7i
OR
opensslopensslMatch0.9.7j
OR
opensslopensslMatch0.9.7k
OR
opensslopensslMatch0.9.8
OR
opensslopensslMatch0.9.8a
OR
opensslopensslMatch0.9.8b
OR
opensslopensslMatch0.9.8c
VendorProductVersionCPE
opensslopenssl0.9.7cpe:2.3:a:openssl:openssl:0.9.7:*:*:*:*:*:*:*
opensslopenssl0.9.7acpe:2.3:a:openssl:openssl:0.9.7a:*:*:*:*:*:*:*
opensslopenssl0.9.7bcpe:2.3:a:openssl:openssl:0.9.7b:*:*:*:*:*:*:*
opensslopenssl0.9.7ccpe:2.3:a:openssl:openssl:0.9.7c:*:*:*:*:*:*:*
opensslopenssl0.9.7dcpe:2.3:a:openssl:openssl:0.9.7d:*:*:*:*:*:*:*
opensslopenssl0.9.7ecpe:2.3:a:openssl:openssl:0.9.7e:*:*:*:*:*:*:*
opensslopenssl0.9.7fcpe:2.3:a:openssl:openssl:0.9.7f:*:*:*:*:*:*:*
opensslopenssl0.9.7gcpe:2.3:a:openssl:openssl:0.9.7g:*:*:*:*:*:*:*
opensslopenssl0.9.7hcpe:2.3:a:openssl:openssl:0.9.7h:*:*:*:*:*:*:*
opensslopenssl0.9.7icpe:2.3:a:openssl:openssl:0.9.7i:*:*:*:*:*:*:*
Rows per page:
1-10 of 161

References

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

High

EPSS

0.964

Percentile

99.6%