A buffer overflow was discovered in the SSL_get_shared_ciphers() utility function. An attacker could send a list of ciphers to an application that uses this function and overrun a buffer.

ubuntucve 2

cve 2

checkpoint_security 1

debiancve 2

prion 1

checkpoint_advisories 1

freebsd_advisory 2

debian 3

nessus 40

openvas 71

osv 2

gentoo 3

altlinux 3

slackware 1

ubuntu 1

f5 4

centos 2

suse 1

redhat 4

freebsd 1

oraclelinux 5

securityvulns 1

cert 2

seebug 1

ubuntucve

CVE-2006-3738

2006-09-28 00:00:00

CVE-2007-5135

2007-09-27 00:00:00

cve

CVE-2006-3738

2006-09-28 18:07:00

CVE-2007-5135

2007-09-27 20:17:00

checkpoint_security

Check Point response to OpenSSL vulnerability CVE-2006-3738

2007-10-27 22:00:00

debiancve

CVE-2006-3738

2006-09-28 18:07:00

CVE-2007-5135

2007-09-27 20:17:00

prion

Buffer overflow

2007-09-27 20:17:00

checkpoint_advisories

OpenSSL SSL_get_shared_ciphers Function Off-by-one Buffer Overflow (CVE-2006-3738; CVE-2007-5135)

2008-01-20 00:00:00

freebsd_advisory

FreeBSD-SA-07:08.openssl

2007-10-03 00:00:00

FreeBSD-SA-06:23.openssl

2006-09-28 00:00:00

debian

[SECURITY] [DSA 1195-1] new openssl096 packages fix denial of service

2006-10-10 20:35:20

[SECURITY] [DSA 1195-1] new openssl096 packages fix denial of service

2006-10-10 20:35:20

[SECURITY] [DSA 1185-1] New openssl packages fix denial of service

2006-09-28 17:28:09

nessus

Debian DSA-1195-1 : openssl096 - denial of service (multiple)

2006-10-20 00:00:00

Mandrake Linux Security Advisory : openssl (MDKSA-2007:193)

2007-10-09 00:00:00

GLSA-200710-06 : OpenSSL: Multiple vulnerabilities

2007-10-09 00:00:00

openvas

Debian: Security Advisory (DSA-1195-1)

2008-01-17 00:00:00

Debian Security Advisory DSA 1195-1 (openssl096)

2008-01-17 00:00:00

Gentoo Security Advisory GLSA 200710-06 (openssl)

2008-09-24 00:00:00

osv

openssl096

2006-10-10 00:00:00

openssl

2006-09-28 00:00:00

gentoo

OpenSSL: Multiple vulnerabilities

2007-10-07 00:00:00

AMD64 x86 emulation base libraries: OpenSSL multiple vulnerabilities

2006-12-11 00:00:00

OpenSSL: Multiple vulnerabilities

2006-10-24 00:00:00

altlinux

Security fix for the ALT Linux 8 package openssl10 version 0.9.7g-alt5

2006-09-27 00:00:00

Security fix for the ALT Linux 9 package openssl1.1 version 0.9.7g-alt5

2006-09-27 00:00:00

Security fix for the ALT Linux 9 package openssl10 version 0.9.7g-alt5

2006-09-27 00:00:00

slackware

[slackware-security] openssl

2006-09-29 07:57:13

ubuntu

openssl vulnerabilities

2006-09-29 00:00:00

K6734 : Local OpenSSL vulnerabilities VU#547300 and VU#386964, CAN-2006-3738, CAN-2006-2940, CAN-2006-2937, CAN-2006-4343

2013-03-27 00:00:00

SOL6734 - Local OpenSSL vulnerabilities VU#547300 and VU#386964, CAN-2006-3738, CAN-2006-2940, CAN-2006-2937, CAN-2006-4343

2007-05-16 00:00:00

SOL8106 - OpenSSL SSL_get_shared_ciphers vulnerability CVE-2007-5135

2007-11-15 00:00:00

centos

openssl, openssl096b security update

2006-09-29 03:35:21

openssl, openssl095a, openssl096 security update

2006-10-02 01:43:05

suse

remote denial of service in openssl

2006-09-28 16:40:53

redhat

(RHSA-2006:0695) openssl security update

2006-09-28 00:00:00

(RHSA-2008:0629) Moderate: Red Hat Network Satellite Server Solaris client security update

2008-08-13 00:00:00

(RHSA-2008:0264) Moderate: Red Hat Network Satellite Server Solaris client security update

2008-05-20 00:00:00

freebsd

OpenSSL -- Multiple problems in crypto(3)

2006-09-28 00:00:00

oraclelinux

Important openssl security update

2006-11-30 00:00:00

Important openssl security update

2006-11-30 00:00:00

openssl-fips security update

2015-04-02 00:00:00

securityvulns

[OpenPKG-SA-2006.021] OpenPKG Security Advisory (openssl)

2006-09-29 00:00:00

cert

OpenSSL SSL_get_shared_ciphers() vulnerable to buffer overflow

2006-09-28 00:00:00

OpenSSL SSLv2 client code fails to properly check for NULL

2006-09-28 00:00:00

seebug

Apple Mac OS X 2006-007存在多个安全漏洞

2006-11-29 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

9.6 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.964 High

EPSS

Percentile

99.6%

JSON

Related for OPENSSL:CVE-2006-3738