Vulnerability 13317 - CERT Civis.Net

Vulnerability Name:

CCN-13317

Published:

2003-09-30

Updated:

2003-09-30

Summary:

OpenSSL is vulnerable to a denial of service, caused by a vulnerability in the OpenSSL certificate verification code. If an application is configured to ignore public key decoding errors, a remote attacker could send a specially-crafted client certificate containing an invalid public key to cause a denial of service.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Consequences:

Denial of Service

References:

Source: CCN
Type: Sun Alert ID: 57100
Sun Linux Multiple Security Vulnerabilities in OpenSSL

Source: CCN
Type: Sun Alert ID: 57444
Sun Grid Engine 5.3 Software May Experience Security Vulnerabilities in OpenSSL

Source: CCN
Type: Novell Technical Information Document TID10087450
Regarding NISCC vulnerability advisory on SSL (secure sockets layer) and TLS -

Source: CCN
Type: CERT Advisory CA-2003-26
Multiple Vulnerabilities in SSL/TLS Implementations

Source: CCN
Type: CIAC Information Bulletin N-159
OpenSSL Security Vulnerabilities in ASN.1 parsing

Source: CCN
Type: cisco-sa-20030930-ssl
Cisco Security Advisory: SSL Implementation Vulnerabilities

Source: CCN
Type: Hitachi Security Vulnerability Information HS03-007
Multiple Vulnerabilities in SSL/TLS Implementations

Source: CCN
Type: US-CERT VU#686224
OpenSSL does not securely handle invalid public key when configured to ignore errors

Source: CCN
Type: OpenSSL Security Advisory [30 September 2003]
Vulnerabilities in ASN.1 parsing

Source: CCN
Type: NISCC Vulnerability Advisory 006489/OpenSSL
Vulnerability Issues in OpenSSL

Source: XF
Type: UNKNOWN
openssl-public-key-dos(13317)

Vulnerable Configuration:

Configuration CCN 1:

cpe:/a:openssl:openssl:0.9.7a:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6i:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.7:*:*:*:*:*:*:*

OR cpe:/o:cisco:ios:12.2sx:*:*:*:*:*:*:*

OR cpe:/o:cisco:ios:12.2sy:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6a:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.7b:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6:beta1:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6:beta2:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6:beta3:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6a:beta1:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6a:beta2:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6a:beta3:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6b:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6c:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6d:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6e:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6f:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6g:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6h:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.6j:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.7:beta1:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.7:beta2:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.7:beta3:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.7:beta4:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.7:beta5:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:0.9.7:beta6:*:*:*:*:*:*

AND

cpe:/h:cisco:firewall_services_module:*:*:*:*:*:*:*:*

OR cpe:/o:sun:solaris:8::sparc:*:*:*:*:*

OR cpe:/a:cisco:pix_firewall:*:*:*:*:*:*:*:*

OR cpe:/h:sun:cobalt_raq_4:*:*:*:*:*:*:*:*

OR cpe:/h:sun:cobalt_raq_xtr:*:*:*:*:*:*:*:*

OR cpe:/o:sun:solaris:9::sparc:*:*:*:*:*

OR cpe:/h:cisco:content_services_switch_11000:*:*:*:*:*:*:*:*

OR cpe:/a:openpkg:openpkg:current:*:*:*:*:*:*:*

OR cpe:/a:openpkg:openpkg:1.2:*:*:*:*:*:*:*

OR cpe:/a:openpkg:openpkg:1.3:*:*:*:*:*:*:*

OR cpe:/o:cisco:ciscoworks_1105_hosting_solution_engine:*:*:*:*:*:*:*:*

OR cpe:/o:cisco:ciscoworks_1105_wireless_lan_solution_engine:*:*:*:*:*:*:*:*

OR cpe:/o:cisco:ios:12.1(11)e:*:*:*:*:*:*:*

OR cpe:/h:cisco:network_analysis_module:*:*:*:*:*:*:*:*

OR cpe:/a:cisco:threat_response:*:*:*:*:*:*:*:*

OR cpe:/a:cisco:application_and_content_networking_software:*:*:*:*:*:*:*:*

OR cpe:/h:cisco:sn_5428_storage_router:-:*:*:*:*:*:*:*

OR cpe:/a:cisco:ciscoworks_common_management_foundation:-:*:*:*:*:*:*:*

Denotes that component is vulnerable