Lucene search
OpenSSLOPENSSL:CVE-2012-2333HistoryMay 10, 2012 - 12:00 a.m.
Vulnerability in OpenSSL CVE-2012-2333
2012-05-1000:00:00
www.openssl.org
26
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
9.1
Confidence
High
EPSS
0.047
Percentile
92.7%
An integer underflow flaw, leading to a buffer over-read, was found in the way OpenSSL handled TLS 1.1, TLS 1.2, and DTLS (Datagram Transport Layer Security) application data record lengths when using a block cipher in CBC (cipher-block chaining) mode. A malicious TLS 1.1, TLS 1.2, or DTLS client or server could use this flaw to crash its connection peer.
Related
openvas
openvas
FreeBSD Ports: openssl
2012-05-31 00:00:00
Mandriva Update for openssl MDVSA-2012:073 (openssl)
2012-08-03 00:00:00
Mandriva Update for openssl MDVSA-2012:073 (openssl)
2012-08-03 00:00:00
nessus
nessus
Oracle Solaris Third-Party Patch Update : openssl (cve_2012_2333_denial_of)
2015-01-19 00:00:00
Amazon Linux AMI : openssl (ALAS-2012-85)
2013-09-04 00:00:00
Fedora 15 : openssl-1.0.0j-1.fc15 (2012-8024)
2012-06-04 00:00:00
securityvulns
securityvulns
OpenSSL DoS
2012-05-21 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl10 version 1.0.0j-alt1
2012-05-12 00:00:00
Security fix for the ALT Linux 7 package openssl10 version 1.0.0j-alt1
2012-05-12 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 1.0.0j-alt1
2012-05-12 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: openssl-1.0.0j-1.fc17
2012-05-29 10:32:44
[SECURITY] Fedora 17 Update: openssl-1.0.0k-1.fc17
2013-03-08 00:02:36
[SECURITY] Fedora 16 Update: openssl-1.0.0j-1.fc16
2012-06-03 00:00:32
prion
prion
Integer overflow
2012-05-14 22:55:00
Code injection
2012-08-08 10:26:00
ibm
ibm
cve
cve
CVE-2012-2333
2012-05-14 22:55:03
CVE-2012-2191
2012-08-08 10:26:18
cvelist
cvelist
CVE-2012-2333
2012-05-14 22:00:00
CVE-2012-2191
2012-08-08 10:00:00
veracode
veracode
Denial Of Service (DoS) Through Buffer Over-read
2017-02-09 00:16:21
Denial Of Service (DoS) Through Buffer Over-read
2019-01-15 08:51:36
amazon
amazon
Medium: openssl
2012-06-10 11:48:00
ubuntucve
ubuntucve
CVE-2012-2333
2012-05-14 00:00:00
freebsd
freebsd
OpenSSL -- DTLS and TLS 1.1, 1.2 denial of service
2012-05-10 00:00:00
suse
suse
Security update for openssl (important)
2012-05-31 01:08:19
Security update for openssl (important)
2012-05-31 00:08:26
Security update for openssl (important)
2012-05-30 23:08:17
f5
f5
K15401 : OpenSSL vulnerability CVE-2012-2333
2014-07-10 00:00:00
SOL15401 - OpenSSL vulnerability CVE-2012-2333
2014-07-09 00:00:00
debiancve
debiancve
CVE-2012-2333
2012-05-14 22:55:03
nvd
nvd
CVE-2012-2333
2012-05-14 22:55:03
CVE-2012-2191
2012-08-08 10:26:18
debian
debian
[SECURITY] [DSA 2475-1] openssl security update
2012-05-17 23:14:31
oraclelinux
oraclelinux
openssl security and bug fix update
2012-05-29 00:00:00
openssl-fips security update
2015-04-02 00:00:00
openssl security update
2016-09-27 00:00:00
centos
centos
openssl security update
2012-05-29 22:40:25
ubuntu
ubuntu
OpenSSL vulnerabilities
2012-05-24 00:00:00
redhat
redhat
(RHSA-2012:0699) Moderate: openssl security and bug fix update
2012-05-29 00:00:00
(RHSA-2012:1306) Important: openssl security update
2012-09-24 15:52:11
(RHSA-2012:1307) Important: openssl security update
2012-09-24 15:53:22
aix
aix
Multiple OpenSSL vulnerabilities
2012-08-01 09:25:58
gentoo
gentoo
OpenSSL: Multiple Vulnerabilities
2013-12-03 00:00:00
cert
cert
lenovo
lenovo
Intel® PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51
Intel® PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
9.1
Confidence
High
EPSS
0.047
Percentile
92.7%
Related for OPENSSL:CVE-2012-2333