Oval Definition:	oval:org.mitre.oval:def:4356
Revision Date: 2008-01-14 Version: 15 Title: Security Vulnerabilities in OpenSSL May Lead to a Denial of Service (DoS) to Applications or Execution of Arbitrary Code With Elevated Privileges Description: The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows remote servers to cause a denial of service (client crash) via unknown vectors that trigger a null pointer dereference. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-4343 Platform(s): Sun Solaris 10 Product(s): Definition Synopsis Solaris 10 (SPARC) meets Sun Alert 102711 Solaris 10 (SPARC) is installed NOT Patch 121229-02 or later installed Patch 121229-02 or later installed AND NOT Patch 118562-13 or later installed AND Pkg SUNWcry (Supplemental Encryption) is installed OR Solaris 10 (x86) meets Sun Alert 102711 Solaris 10 (x86) is installed NOT Patch 121230-02 or later installed Patch 121230-02 or later installed AND NOT Patch 118563-13 or later installed AND Pkg SUNWcry (Supplemental Encryption) is installed
BACK