Oval Definition:oval:org.mitre.oval:def:19264
Revision Date:2015-04-20Version:29
Title:HP-UX Running OpenSSL, Remote Denial of Service (DoS), Unauthorized Access
Description:The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote attackers to cause a denial of service (daemon crash) via out-of-order messages that violate the TLS protocol.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2011-3210
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX02734
  • HP-UX B.11.11
  • AND filesets tests
  • openssl.OPENSSL-CER version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-CONF version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-DOC version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-INC version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-LIB version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-MAN version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-MIS version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-PRNG version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-PVT version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-RUN version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-SRC version is less than A.00.09.08s.001
  • OR Criteria meets HP Security Bulletin HPSBUX02734
  • HP-UX B.11.23
  • AND filesets tests
  • openssl.OPENSSL-CER version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-CONF version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-DOC version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-INC version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-LIB version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-MAN version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-MIS version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-PRNG version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-PVT version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-RUN version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-SRC version is less than A.00.09.08s.002
  • OR Criteria meets HP Security Bulletin HPSBUX02734
  • HP-UX B.11.31
  • AND filesets tests
  • openssl.OPENSSL-CER version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-CONF version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-DOC version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-INC version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-LIB version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-MAN version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-MIS version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-PRNG version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-PVT version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-RUN version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-SRC version is less than A.00.09.08s.003
    • BACK