Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-394
HistoryOct 11, 2003 - 12:00 a.m.

openssl095 - ASN.1 parsing vulnerability

2003-10-1100:00:00
Google
osv.dev
31

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

Steve Henson of the OpenSSL core team identified and prepared fixes
for a number of vulnerabilities in the OpenSSL ASN1 code that were
discovered after running a test suite by British National
Infrastructure Security Coordination Centre (NISCC).

A bug in OpenSSLs SSL/TLS protocol was also identified which causes
OpenSSL to parse a client certificate from an SSL/TLS client when it
should reject it as a protocol error.

The Common Vulnerabilities and Exposures project identifies the
following problems:

Integer overflow in OpenSSL that allows remote attackers to cause a
denial of service (crash) via an SSL client certificate with
certain ASN.1 tag values.

OpenSSL does not properly track the number of characters in certain
ASN.1 inputs, which allows remote attackers to cause a denial of
service (crash) via an SSL client certificate that causes OpenSSL
to read past the end of a buffer when the long form is used.

Double-free vulnerability allows remote attackers to cause a denial
of service (crash) and possibly execute arbitrary code via an SSL
client certificate with a certain invalid ASN.1 encoding. This bug
was only present in OpenSSL 0.9.7 and is listed here only for
reference.

For the stable distribution (woody) this problem has been
fixed in openssl095 version 0.9.5a-6.woody.3.

This package is not present in the unstable (sid) or testing (sarge)
distribution.

We recommend that you upgrade your libssl095a packages and restart
services using this library. Debian doesn’t ship any packages that
are linked against this library.

The following commandline (courtesy of Ray Dassen) produces a list of
names of running processes that have libssl095 mapped into their
memory space:


    find /proc -name maps -exec egrep -l 'libssl095' {} /dev/null \; \
    | sed -e 's/[^0-9]//g' | xargs --no-run-if-empty ps --no-headers -p | \
    sed -e 's/^\+//' -e 's/ \+/ /g' | cut -d ' ' -f 5 | sort | uniq

You should restart the associated services.

Related

openvas 14
nessus 20
debian 3
securityvulns 3
osv 1
cert 4
suse 1
redhat 1
cisco 1
redhatcve 1
cve 3
debiancve 3
ubuntucve 3
openssl 3
oraclelinux 3
openvas
openvas
HP-UX Update for BIND v920 HPSBUX00290
2009-05-05 00:00:00
Debian Security Advisory DSA 394-1 (openssl095)
2008-01-17 00:00:00
HP-UX Update for HP WEBM Services HPSBUX00288
2009-05-05 00:00:00
nessus
nessus
HP-UX PHSS_29893 : HPSBUX0310-284 SSRT3622 rev.3 HP-UX Apache HTTP Server Denial of Service,unauthorized access
2005-03-18 00:00:00
HP-UX PHSS_30055 : s700_800 11.04 Virtualvault 4.7 IWS update
2005-03-18 00:00:00
Debian DSA-394-1 : openssl095 - ASN.1 parsing vulnerability
2004-09-29 00:00:00
debian
debian
[SECURITY] [DSA 394-1] New openssl095 packages fix denial of service
2003-10-11 13:54:07
[SECURITY] [DSA 394-1] New openssl095 packages fix denial of service
2003-10-11 13:54:07
[SECURITY] [DSA-393-1] New OpenSSL packages correct denial of service issues
2003-10-01 00:00:00
securityvulns
securityvulns
Subject: [OpenPKG-SA-2003.044] OpenPKG Security Advisory (openssl)
2003-09-30 00:00:00
[Full-Disclosure] [OpenSSL Advisory] Vulnerabilities in ASN.1 parsing
2003-09-30 00:00:00
CERT Advisory CA-2003-26 Multiple Vulnerabilities in SSL/TLS Implementations
2003-10-03 00:00:00
osv
osv
openssl - denial of service
2003-10-01 00:00:00
cert
cert
Multiple vulnerabilities in SSL/TLS implementations
2003-09-30 00:00:00
OpenSSL contains integer overflow handling ASN.1 tags (2)
2003-09-30 00:00:00
OpenSSL ASN.1 parser insecure memory deallocation
2003-09-30 00:00:00
suse
suse
remote denial-of-service in openssl
2003-10-01 17:18:32
redhat
redhat
(RHSA-2003:293) openssl security update
2003-09-30 00:00:00
cisco
cisco
SSL Implementation Vulnerabilities
2003-09-30 23:30:00
redhatcve
redhatcve
CVE-2005-1730
2015-10-30 10:15:31
cve
cve
CVE-2003-0545
2003-11-17 05:00:00
CVE-2003-0544
2003-11-17 05:00:00
CVE-2003-0543
2003-11-17 05:00:00
debiancve
debiancve
CVE-2003-0544
2003-11-17 05:00:00
CVE-2003-0545
2003-11-17 05:00:00
CVE-2003-0543
2003-11-17 05:00:00
ubuntucve
ubuntucve
CVE-2003-0544
2003-11-17 00:00:00
CVE-2003-0545
2003-11-17 00:00:00
CVE-2003-0543
2003-11-17 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2003-0544
2003-09-30 00:00:00
Vulnerability in OpenSSL CVE-2003-0545
2003-09-30 00:00:00
Vulnerability in OpenSSL CVE-2003-0543
2003-09-30 00:00:00
oraclelinux
oraclelinux
openssl-fips security update
2015-04-02 00:00:00
openssl security update
2019-03-13 00:00:00
openssl security update
2019-08-16 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for OSV:DSA-394
openvas14nessus20debian3securityvulns3osv1cert4suse1redhat1cisco1redhatcve1cve3debiancve3ubuntucve3openssl3oraclelinux3