OpenSSL (IBB): Bleichenbacher oracle in SSLv2 (CVE-2016-0704)

2016-05-12T05:56:32
ID H1:138181
Type hackerone
Reporter dadrian
Modified 2016-06-01T03:39:32

Description

I'm retroactively submitting CVE-2016-0704, a.k.a. "Leaky Export", which is a Bleichenbacher-style bug that leads to another variant of the Special DROWN attack. I'm submitting on behalf of myself and J. Alex Halderman, as we independently found this bug. This was validated by OpenSSL as Sev:Moderate at https://www.openssl.org/news/secadv/20160301.txt.

See https://drownattack.com for more information.