Lucene search
Ubuntu.comUB:CVE-2009-1386HistoryJun 04, 2009 - 12:00 a.m.
CVE-2009-1386
2009-06-0400:00:00
ubuntu.com
ubuntu.com
10
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.065 Low
EPSS
Percentile
93.7%
ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a
denial of service (NULL pointer dereference and daemon crash) via a DTLS
ChangeCipherSpec packet that occurs before ClientHello.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | PoC: http://www.milw0rm.com/exploits/8873 |
Related
nessus
nessus
OpenSSL < 0.9.8i Denial of Service
2012-01-04 00:00:00
SuSE 11 Security Update : OpenSSL (SAT Patch Number 990)
2009-09-24 00:00:00
openSUSE Security Update : libopenssl-devel (libopenssl-devel-974)
2009-07-21 00:00:00
f5
f5
SOL15351 - OpenSSL DTLS ChangeCipherSpec vulnerability CVE-2009-1386
2014-06-19 00:00:00
K15351 : OpenSSL DTLS ChangeCipherSpec vulnerability CVE-2009-1386
2014-06-19 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:42:00
cve
cve
CVE-2009-1386
2009-06-04 16:30:00
debiancve
debiancve
CVE-2009-1386
2009-06-04 16:30:00
openssl
openssl
Vulnerability in OpenSSL CVE-2009-1386
2009-06-02 00:00:00
seebug
seebug
OpenSSL ChangeCipherSpec DTLSๆฅๆๆ็ปๆๅกๆผๆด
2009-06-06 00:00:00
OpenSSL < 0.9.8i DTLS ChangeCipherSpec Remote DoS Exploit
2009-06-05 00:00:00
OpenSSL < 0.9.8i DTLS ChangeCipherSpec Remote DoS Exploit
2014-07-01 00:00:00
prion
prion
Null pointer dereference
2009-06-04 16:30:00
openvas
openvas
Denial Of Service Vulnerability in OpenSSL (Jun 2009) - Linux
2009-06-12 00:00:00
SLES11: Security update for OpenSSL
2009-10-11 00:00:00
SLES10: Security update for OpenSSL
2009-10-13 00:00:00
exploitpack
exploitpack
OpenSSL 0.9.8i - DTLS ChangeCipherSpec Remote Denial of Service
2009-06-04 00:00:00
exploitdb
exploitdb
OpenSSL < 0.9.8i - DTLS ChangeCipherSpec Remote Denial of Service
2009-06-04 00:00:00
osv
osv
openssl - cryptographic weakness
2009-09-15 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2009-06-25 00:00:00
securityvulns
securityvulns
[USN-792-1] OpenSSL vulnerabilities
2009-06-25 00:00:00
Multiple OpenSSL DoS conditions
2009-06-25 00:00:00
debian
debian
[SECURITY] [DSA 1888-1] New openssl packages deprecate MD2 hash signatures
2009-09-15 21:37:22
oraclelinux
oraclelinux
openssl security, bug fix, and enhancement update
2009-09-08 00:00:00
centos
centos
openssl security update
2009-09-15 18:42:01
redhat
redhat
(RHSA-2009:1335) Moderate: openssl security, bug fix, and enhancement update
2009-09-02 09:47:12
vmware
vmware
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00
lenovo
lenovo
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.065 Low
EPSS
Percentile
93.7%
Related for UB:CVE-2009-1386