An oracle protection mechanism in the get_client_master_key function in
s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0
before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a overwrites
incorrect MASTER-KEY bytes during use of export cipher suites, which makes
it easier for remote attackers to decrypt TLS ciphertext data by leveraging
a Bleichenbacher RSA padding oracle, a related issue to CVE-2016-0800.

Notes

Author	Note
mdeslaur	openssl in Ubuntu is compiled with no-ssl2

References

launchpad.net/bugs/cve/CVE-2016-0704

nvd.nist.gov/vuln/detail/CVE-2016-0704

security-tracker.debian.org/tracker/CVE-2016-0704

www.cve.org/CVERecord?id=CVE-2016-0704

www.openssl.org/news/secadv/20160301.txt

prion 4

cve 4

debiancve 3

checkpoint_advisories 1

f5 4

paloalto 1

nessus 42

openvas 40

veracode 2

redhat 12

amazon 1

hackerone 3

centos 3

ubuntucve 2

ibm 38

ics 2

threatpost 1

huawei 1

cert 1

oraclelinux 3

openssl 2

freebsd 1

freebsd_advisory 1

cloudfoundry 1

gentoo 1

suse 14

cisco 1

openwrt 1

arista 1

seebug 1

symantec 1

nmap 1

aix 1

slackware 1

metasploit 1

mageia 1

nodejsblog 1

prion

Buffer overflow

2016-03-02 11:59:00

Code injection

2016-03-01 20:59:00

Sql injection

2016-03-02 11:59:00

cve

CVE-2016-0704

2016-03-02 11:59:00

CVE-2016-0800

2016-03-01 20:59:00

CVE-2016-8000

2016-03-03 00:59:00

debiancve

CVE-2016-0704

2016-03-02 11:59:00

CVE-2016-0800

2016-03-01 20:59:00

CVE-2016-0703

2016-03-02 11:59:00

checkpoint_advisories

Secure Sockets Layer (SSL) Version 2.0 (CVE-2016-0703; CVE-2016-0704; CVE-2016-0800)

2014-03-18 00:00:00

SOL95463126 - OpenSSL vulnerabilities CVE-2016-0703 and CVE-2016-0704

2016-03-09 00:00:00

K95463126 : OpenSSL vulnerabilities CVE-2016-0703 and CVE-2016-0704

2016-03-10 00:00:00

K23196136 : OpenSSL vulnerability CVE-2016-0800

2016-03-02 00:00:00

paloalto

OpenSSL Vulnerabilities

2016-10-18 00:00:00

nessus

F5 Networks BIG-IP : OpenSSL vulnerabilities (SOL95463126) (DROWN)

2016-03-16 00:00:00

Amazon Linux AMI : openssl098e (ALAS-2016-682) (DROWN)

2016-04-07 00:00:00

CentOS 6 / 7 : openssl098e (CESA-2016:0372) (DROWN)

2016-03-09 00:00:00

openvas

Palo Alto PAN-OS OpenSSL Vulnerabilities (PAN-SA-2016-0030)

2016-10-25 00:00:00

F5 BIG-IP - OpenSSL vulnerabilities CVE-2016-0703 and CVE-2016-0704

2016-03-15 00:00:00

CentOS Update for openssl098e CESA-2016:0372 centos6

2016-03-10 00:00:00

veracode

Information Disclosure

2017-02-06 01:54:39

DROWN Attack

2017-01-27 08:38:09

redhat

(RHSA-2016:0304) Important: openssl security update

2016-03-01 00:00:00

(RHSA-2016:0303) Important: openssl security update

2016-03-01 00:00:00

(RHSA-2016:0372) Important: openssl098e security update

2016-03-09 00:00:00

amazon

Important: openssl098e

2016-04-06 14:40:00

hackerone

Internet Bug Bounty: Bleichenbacher oracle in SSLv2 (CVE-2016-0704)

2016-05-12 05:56:32

ownCloud: DROWN Attack

2016-03-01 16:45:30

Internet Bug Bounty: Cross-protocol attack on TLS using SSLv2 (DROWN) (CVE-2016-0800)

2016-09-07 17:34:32

centos

openssl098e security update

2016-03-09 05:32:33

openssl security update

2016-03-01 16:57:33

openssl security update

2016-03-01 16:09:29

ubuntucve

CVE-2016-0800

2016-03-01 00:00:00

CVE-2016-0703

2016-03-01 00:00:00

ibm

Security Bulletin: CVE-2016-0800 SSLv2 Vulnerability in Multiple N series Products

2021-12-15 18:05:07

Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Security Guardium

2018-06-16 21:40:26

Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM MQ Appliance

2018-06-15 07:05:21

ics

Siemens Industrial Products DROWN Vulnerability (Update C)

2017-11-28 12:00:00

Siemens Industrial Products DROWN Vulnerability (Update C)

2016-04-12 00:00:00

threatpost

DROWN Flaw Opens 33 Percent Of HTTPS Connections To Attack

2016-03-01 12:30:00

huawei

Security Advisory - OpenSSL DROWN Security Vulnerability

2016-03-30 00:00:00

cert

Network traffic encrypted using RSA-based SSL certificates over SSLv2 may be decrypted by the DROWN attack

2016-03-01 00:00:00

oraclelinux

openssl098e security update

2016-03-09 00:00:00

openssl security update

2016-03-01 00:00:00

openssl security update

2016-03-01 00:00:00

openssl

Vulnerability in OpenSSL CVE-2016-0704

2016-03-01 00:00:00

Vulnerability in OpenSSL CVE-2016-0800

2016-03-01 00:00:00

freebsd

FreeBSD -- Multiple OpenSSL vulnerabilities

2016-03-10 00:00:00

freebsd_advisory

FreeBSD-SA-16:12.openssl

2016-03-10 00:00:00

cloudfoundry

CVE-2016-0800 & CVE-2016-0703 OpenSSL vulnerabilities | Cloud Foundry

2016-03-02 00:00:00

gentoo

OpenSSL: Multiple vulnerabilities

2016-03-20 00:00:00

suse

Security update for openssl (important)

2016-03-11 14:14:22

Security update for openssl (important)

2016-03-03 15:11:31

Security update for openssl (important)

2016-03-01 19:12:02

cisco

Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016

2016-03-02 12:30:00

openwrt

openssl: Security update (9 CVEs)

2016-03-01 16:52:09

arista

Security Advisory 0018

2016-03-01 00:00:00

seebug

Cross-protocol attack on TLS using SSLv2 (DROWN) (CVE-2016-0800)

2016-03-02 00:00:00

symantec

SA117 : OpenSSL Vulnerabilities 1-Mar-2016

2016-03-07 08:00:00

nmap

sslv2-drown NSE Script

2016-07-07 16:35:39

aix

Multiple vulnerabilities in OpenSSL affect AIX

2016-04-04 11:04:25

slackware

[slackware-security] openssl

2016-03-03 06:56:40

metasploit

SSL/TLS Version Detection

2022-11-01 03:42:40

mageia

Updated openssl packages fix security vulnerabilities

2016-03-02 21:28:46

nodejsblog

OpenSSL updates, 1.0.2g and 1.0.1s

2016-02-29 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.017 Low

EPSS

Percentile

87.5%

JSON

Related for UB:CVE-2016-0704