Oval Definition:	oval:org.mitre.oval:def:4256
Revision Date: 2008-01-14 Version: 16 Title: Security Vulnerabilities in OpenSSL May Lead to a Denial of Service (DoS) to Applications or Execution of Arbitrary Code With Elevated Privileges Description: Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-3738 Platform(s): Sun Solaris 10 Product(s): Definition Synopsis Solaris 10 (SPARC) meets Sun Alert 102711 Solaris 10 (SPARC) is installed NOT Patch 121229-02 or later installed Patch 121229-02 or later installed AND NOT Patch 118562-13 or later installed AND Pkg SUNWcry (Supplemental Encryption) is installed OR Solaris 10 (x86) meets Sun Alert 102711 Solaris 10 (x86) is installed NOT Patch 121230-02 or later installed Patch 121230-02 or later installed AND NOT Patch 118563-13 or later installed AND Pkg SUNWcry (Supplemental Encryption) is installed
BACK