CVE-2016-0800
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
7.6 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.952 High
EPSS
Percentile
99.3%
The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a “DROWN” attack.
References
kb.juniper.net/InfoCenter/index?page=content&id=JSA10722
kb.juniper.net/InfoCenter/index?page=content&id=JSA10759
lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html
lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html
lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html
marc.info/?l=bugtraq&m=145983526810210&w=2
marc.info/?l=bugtraq&m=146108058503441&w=2
marc.info/?l=bugtraq&m=146133665209436&w=2
rhn.redhat.com/errata/RHSA-2016-1519.html
support.citrix.com/article/CTX208403
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl
www.huawei.com/en/psirt/security-advisories/huawei-sa-20160330-01-openssl-en
www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
www.securityfocus.com/bid/83733
www.securityfocus.com/bid/91787
www.securitytracker.com/id/1035133
www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-623229.pdf
access.redhat.com/security/vulnerabilities/drown
cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf
cert-portal.siemens.com/productcert/pdf/ssa-623229.pdf
drownattack.com
h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03726en_us
h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05073516
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05086877
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05096953
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05141441
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05143554
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150800
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176765
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05307589
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05386804
help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes
ics-cert.us-cert.gov/advisories/ICSA-16-103-03
kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168
kc.mcafee.com/corporate/index?page=content&id=SB10154
security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc
security.gentoo.org/glsa/201603-15
security.netapp.com/advisory/ntap-20160301-0001/
www.arista.com/en/support/advisories-notices/security-advisories/1260-security-advisory-18
www.kb.cert.org/vuls/id/583776
www.openssl.org/news/secadv/20160301.txt
Social References
More
Related
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
7.6 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.952 High
EPSS
Percentile
99.3%