Lucene search

K
cvelistRedhatCVELIST:CVE-2011-3210
HistorySep 22, 2011 - 10:00 a.m.

CVE-2011-3210

2011-09-2210:00:00
redhat
www.cve.org

7.8 High

AI Score

Confidence

High

0.305 Low

EPSS

Percentile

97.0%

The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote attackers to cause a denial of service (daemon crash) via out-of-order messages that violate the TLS protocol.