Oval Definition:oval:org.mitre.oval:def:19279
Revision Date:2015-04-20Version:29
Title:HP-UX Running OpenSSL, Remote Denial of Service (DoS), Unauthorized Access
Description:The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which might allow remote attackers to obtain sensitive information by decrypting the padding data sent by an SSL peer.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2011-4576
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX02734
  • HP-UX B.11.11
  • AND filesets tests
  • openssl.OPENSSL-CER version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-CONF version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-DOC version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-INC version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-LIB version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-MAN version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-MIS version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-PRNG version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-PVT version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-RUN version is less than A.00.09.08s.001
  • OR openssl.OPENSSL-SRC version is less than A.00.09.08s.001
  • OR Criteria meets HP Security Bulletin HPSBUX02734
  • HP-UX B.11.23
  • AND filesets tests
  • openssl.OPENSSL-CER version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-CONF version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-DOC version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-INC version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-LIB version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-MAN version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-MIS version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-PRNG version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-PVT version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-RUN version is less than A.00.09.08s.002
  • OR openssl.OPENSSL-SRC version is less than A.00.09.08s.002
  • OR Criteria meets HP Security Bulletin HPSBUX02734
  • HP-UX B.11.31
  • AND filesets tests
  • openssl.OPENSSL-CER version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-CONF version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-DOC version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-INC version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-LIB version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-MAN version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-MIS version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-PRNG version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-PVT version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-RUN version is less than A.00.09.08s.003
  • OR openssl.OPENSSL-SRC version is less than A.00.09.08s.003
    • BACK