Lucene search

K
ubuntucveUbuntu.comUB:CVE-2006-3738
HistorySep 28, 2006 - 12:00 a.m.

CVE-2006-3738

2006-09-2800:00:00
ubuntu.com
ubuntu.com
20

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.964

Percentile

99.6%

Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7
before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified
impact and remote attack vectors involving a long list of ciphers.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchopenssl< 0.9.8a-7ubuntu0.3UNKNOWN
ubuntu6.10noarchopenssl< 0.9.8b-2ubuntu2UNKNOWN
ubuntu7.04noarchopenssl< 0.9.8b-2ubuntu2UNKNOWN
ubuntu6.06noarchopenssl097< 0.9.7g-5ubuntu1.1UNKNOWN
ubuntu6.10noarchopenssl097< 0.9.7k-3UNKNOWN
ubuntu7.04noarchopenssl097< 0.9.7k-3UNKNOWN

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.964

Percentile

99.6%