Lucene search

K
freebsdFreeBSDDBA5D1C9-9F29-11E1-B511-003067C2616F
HistoryMay 10, 2012 - 12:00 a.m.

OpenSSL -- DTLS and TLS 1.1, 1.2 denial of service

2012-05-1000:00:00
vuxml.freebsd.org
24
openssl
cbc mode ciphersuits
denial of service
tls 1.1
tls 1.2
dtls
unix

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS

0.047

Percentile

92.7%

OpenSSL security team reports:

A flaw in the OpenSSL handling of CBC mode ciphersuites in TLS 1.1, 1.2 and
DTLS can be exploited in a denial of service attack on both clients and
servers.

Affected configurations

Vulners
Node
mozillanssRange<1.0.1_2
VendorProductVersionCPE
mozillanss*cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:*

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS

0.047

Percentile

92.7%