CVE-2004-0112

The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://www.securityfocus.com/bid/9899	Vendor Advisory
http://www.us-cert.gov/cas/techalerts/TA04-078A.html	Third Party Advisory US Government Resource
http://www.openssl.org/news/secadv_20040317.txt
http://www.uniras.gov.uk/vuls/2004/224012/index.htm
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000834
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-005.txt.asc
http://www.redhat.com/support/errata/RHSA-2004-121.html
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.10/SCOSA-2004.10.txt
http://www.novell.com/linux/security/advisories/2004_07_openssl.html
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57524
http://docs.info.apple.com/article.html?artnum=61798
http://lists.apple.com/mhonarc/security-announce/msg00045.html
http://www.kb.cert.org/vuls/id/484726	US Government Resource
http://www.cisco.com/warp/public/707/cisco-sa-20040317-openssl.shtml
http://security.gentoo.org/glsa/glsa-200403-03.xml
http://www.redhat.com/support/errata/RHSA-2004-120.html
http://www.trustix.org/errata/2004/0012
http://www.ciac.org/ciac/bulletins/o-101.shtml
http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
http://secunia.com/advisories/11139
http://www.slackware.org/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.455961
http://www.mandriva.com/security/advisories?name=MDKSA-2004:023
http://marc.info/?l=bugtraq&m=108403806509920&w=2
http://marc.info/?l=bugtraq&m=107953412903636&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/15508
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9580
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A928
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1049

Configurations

Configuration 1 (hide)

OR	cpe:2.3:h:cisco:firewall_services_module:1.1.2:::::::*
	cpe:2.3:h:cisco:firewall_services_module:1.1.3:::::::*
	cpe:2.3:h:cisco:firewall_services_module::::::::
	cpe:2.3:h:hp:apache-based_web_server:2.0.43.04:::::::*
	cpe:2.3:h:symantec:clientless_vpn_gateway_4400:5.0:::::::*
	cpe:2.3:h:hp:aaa_server::::::::
	cpe:2.3:h:hp:apache-based_web_server:2.0.43.00:::::::*
	cpe:2.3:h:cisco:firewall_services_module:1.1_\(3.005\):::::::*
	cpe:2.3:h:cisco:firewall_services_module:2.1_\(0.208\):::::::*

Configuration 2 (hide)

OR	cpe:2.3:a:cisco:ciscoworks_common_management_foundation:2.1:::::::*
	cpe:2.3:h:avaya:sg208:4.4:::::::*
	cpe:2.3:h:avaya:sg5:4.2:::::::*
	cpe:2.3:o:freebsd:freebsd:4.9:::::::*
	cpe:2.3:o:freebsd:freebsd:5.1:::::::*
	cpe:2.3:o:hp:hp-ux:11.23:::::::*
	cpe:2.3:o:hp:hp-ux:8.05:::::::*
	cpe:2.3:o:redhat:linux:7.3:::::::*
	cpe:2.3:o:redhat:linux:8.0:::::::*
	cpe:2.3:h:avaya:sg203:4.4:::::::*
	cpe:2.3:h:avaya:sg208::::::::
	cpe:2.3:o:freebsd:freebsd:4.8:::::::*
	cpe:2.3:o:freebsd:freebsd:4.8:releng::::::
	cpe:2.3:o:hp:hp-ux:11.00:::::::*
	cpe:2.3:o:hp:hp-ux:11.11:::::::*
	cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:::::::*
	cpe:2.3:o:redhat:linux:7.2:::::::*
	cpe:2.3:h:avaya:sg200:4.31.29:::::::*
	cpe:2.3:h:avaya:sg200:4.4:::::::*
	cpe:2.3:h:avaya:sg203:4.31.29:::::::*
	cpe:2.3:o:apple:mac_os_x:10.3.3:::::::*
	cpe:2.3:o:apple:mac_os_x_server:10.3.3:::::::*
	cpe:2.3:o:freebsd:freebsd:5.2:::::::*
	cpe:2.3:o:freebsd:freebsd:5.2.1:release::::::
	cpe:2.3:o:redhat:enterprise_linux:3.0::enterprise_server:::::
	cpe:2.3:o:redhat:enterprise_linux:3.0::workstation_server:::::
	cpe:2.3:a:cisco:ciscoworks_common_services:2.2:::::::*
	cpe:2.3:h:avaya:converged_communications_server:2.0:::::::*
	cpe:2.3:h:avaya:sg5:4.3:::::::*
	cpe:2.3:h:avaya:sg5:4.4:::::::*
	cpe:2.3:o:freebsd:freebsd:5.1:release::::::
	cpe:2.3:o:freebsd:freebsd:5.1:releng::::::
	cpe:2.3:o:openbsd:openbsd:3.3:::::::*
	cpe:2.3:o:openbsd:openbsd:3.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux:3.0::advanced_server:::::
	cpe:2.3:o:sco:openserver:5.0.6:::::::*
	cpe:2.3:o:sco:openserver:5.0.7:::::::*

Configuration 3 (hide)

AND

OR	cpe:2.3:o:cisco:ios:12.1\(11b\)e12:::::::*
	cpe:2.3:o:cisco:ios:12.1\(11b\)e14:::::::*
	cpe:2.3:o:cisco:ios:12.1\(11\)e:::::::*
	cpe:2.3:o:cisco:ios:12.1\(11b\)e:::::::*
	cpe:2.3:o:cisco:ios:12.2sy:::::::*
	cpe:2.3:o:cisco:ios:12.2za:::::::*
	cpe:2.3:o:cisco:ios:12.2\(14\)sy:::::::*
	cpe:2.3:o:cisco:ios:12.2\(14\)sy1:::::::*
	cpe:2.3:o:cisco:ios:12.1\(13\)e9:::::::*
	cpe:2.3:o:cisco:ios:12.1\(19\)e1:::::::*

OR	cpe:2.3:a:4d:webstar:4.0:::::::*
	cpe:2.3:a:avaya:intuity_audix:::lx:::::*
	cpe:2.3:a:4d:webstar:5.3:::::::*
	cpe:2.3:a:4d:webstar:5.3.1:::::::*
	cpe:2.3:a:avaya:vsu:2000_r2.0.1:::::::*
	cpe:2.3:a:avaya:vsu:5:::::::*
	cpe:2.3:a:checkpoint:firewall-1:next_generation_fp0:::::::*
	cpe:2.3:a:checkpoint:firewall-1:next_generation_fp1:::::::*
	cpe:2.3:a:checkpoint:vpn-1:next_generation_fp1:::::::*
	cpe:2.3:a:checkpoint:vpn-1:next_generation_fp2:::::::*
	cpe:2.3:a:cisco:okena_stormwatch:3.2:::::::*
	cpe:2.3:a:cisco:pix_firewall:6.2.2_.111:::::::*
	cpe:2.3:a:cisco:webns:7.10_.0.06s:::::::*
	cpe:2.3:a:cisco:webns:7.2_0.0.03:::::::*
	cpe:2.3:a:hp:wbem:a.01.05.08:::::::*
	cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.1.1:::::::*
	cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.2.1:::::::*
	cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.3_rc2:::::::*
	cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.3_rc3:::::::*
	cpe:2.3:a:novell:edirectory:8.5.12a:::::::*
	cpe:2.3:a:novell:edirectory:8.5.27:::::::*
	cpe:2.3:a:openssl:openssl:0.9.6c:::::::*
	cpe:2.3:a:openssl:openssl:0.9.6d:::::::*
	cpe:2.3:a:openssl:openssl:0.9.6k:::::::*
	cpe:2.3:a:openssl:openssl:0.9.7:::::::*
	cpe:2.3:a:redhat:openssl:0.9.6b-3::i386:::::
	cpe:2.3:a:redhat:openssl:0.9.7a-2::i386:::::
	cpe:2.3:a:sgi:propack:2.4:::::::*
	cpe:2.3:a:sgi:propack:3.0:::::::*
	cpe:2.3:a:stonesoft:stonebeat_fullcluster:3.0:::::::*
	cpe:2.3:a:stonesoft:stonebeat_securitycluster:2.0:::::::*
	cpe:2.3:a:stonesoft:stonegate:1.7:::::::*
	cpe:2.3:a:stonesoft:stonegate:1.7.1:::::::*
	cpe:2.3:a:stonesoft:stonegate:2.0.8:::::::*
	cpe:2.3:a:stonesoft:stonegate:2.0.9:::::::*
	cpe:2.3:a:tarantella:tarantella_enterprise:3.40:::::::*
	cpe:2.3:a:vmware:gsx_server:2.0:::::::*
	cpe:2.3:h:avaya:s8500:r2.0.1:::::::*
	cpe:2.3:h:avaya:s8700:r2.0.0:::::::*
	cpe:2.3:h:cisco:mds_9000::::::::
	cpe:2.3:h:cisco:secure_content_accelerator:10000:::::::*
	cpe:2.3:a:avaya:intuity_audix:5.1.46:::::::*
	cpe:2.3:a:avaya:vsu:500:::::::*
	cpe:2.3:a:avaya:vsu:5000_r2.0.1:::::::*
	cpe:2.3:a:checkpoint:firewall-1:next_generation_fp2:::::::*
	cpe:2.3:a:checkpoint:provider-1:4.1:::::::*
	cpe:2.3:a:checkpoint:provider-1:4.1:sp1::::::
	cpe:2.3:a:checkpoint:vpn-1:vsx_ng_with_application_intelligence:::::::*
	cpe:2.3:a:cisco:access_registrar::::::::
	cpe:2.3:a:cisco:threat_response::::::::
	cpe:2.3:a:cisco:webns:6.10:::::::*
	cpe:2.3:a:hp:wbem:a.02.00.00:::::::*
	cpe:2.3:a:hp:wbem:a.02.00.01:::::::*
	cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.2.2:::::::*
	cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.2_rc1:::::::*
	cpe:2.3:a:neoteris:instant_virtual_extranet:3.0:::::::*
	cpe:2.3:a:neoteris:instant_virtual_extranet:3.1:::::::*
	cpe:2.3:a:novell:edirectory:8.6.2:::::::*
	cpe:2.3:a:novell:edirectory:8.7:::::::*
	cpe:2.3:a:openssl:openssl:0.9.6e:::::::*
	cpe:2.3:a:openssl:openssl:0.9.6f:::::::*
	cpe:2.3:a:openssl:openssl:0.9.7:beta1::::::
	cpe:2.3:a:openssl:openssl:0.9.7:beta2::::::
	cpe:2.3:a:redhat:openssl:0.9.7a-2::i386_dev:::::
cpe:2.3:a:redhat:openssl:0.9.7a-2::i386_perl:::::
cpe:2.3:a:stonesoft:servercluster:2.5:::::::*
cpe:2.3:a:stonesoft:servercluster:2.5.2:::::::*
cpe:2.3:a:stonesoft:stonebeat_securitycluster:2.5:::::::*
cpe:2.3:a:stonesoft:stonebeat_webcluster:2.0:::::::*
cpe:2.3:a:stonesoft:stonegate:1.7.2:::::::*
cpe:2.3:a:stonesoft:stonegate:2.0.1:::::::*
cpe:2.3:a:stonesoft:stonegate:2.1:::::::*
cpe:2.3:a:stonesoft:stonegate:2.2:::::::*
cpe:2.3:a:vmware:gsx_server:2.0.1_build_2129:::::::*
cpe:2.3:a:vmware:gsx_server:2.5.1:::::::*
cpe:2.3:a:vmware:gsx_server:2.5.1_build_5336:::::::*
cpe:2.3:h:avaya:s8700:r2.0.1:::::::*
cpe:2.3:h:bluecoat:proxysg::::::::
cpe:2.3:h:securecomputing:sidewinder:5.2:::::::*
cpe:2.3:h:securecomputing:sidewinder:5.2.0.01:::::::*
cpe:2.3:o:bluecoat:cacheos_ca_sa:4.1.12:::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.0:::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.1\(1\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.1\(2\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.2\(3\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.2\(3.100\):::::::*
cpe:2.3:h:securecomputing:sidewinder:5.2.1.02:::::::*
cpe:2.3:h:sun:crypto_accelerator_4000:1.0:::::::*
cpe:2.3:o:bluecoat:cacheos_ca_sa:4.1.10:::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.0\(4.101\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.1:::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.2\(1\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.2\(2\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.3\(3.109\):::::::*
cpe:2.3:a:4d:webstar:5.2.3:::::::*
cpe:2.3:a:4d:webstar:5.2.4:::::::*
cpe:2.3:a:avaya:vsu:100_r2.0.1:::::::*
cpe:2.3:a:avaya:vsu:10000_r2.0.1:::::::*
cpe:2.3:a:checkpoint:firewall-1:::vsx-ng-ai:::::*
cpe:2.3:a:checkpoint:firewall-1:2.0::gx:::::
cpe:2.3:a:checkpoint:provider-1:4.1:sp4::::::
cpe:2.3:a:checkpoint:vpn-1:next_generation_fp0:::::::*
cpe:2.3:a:cisco:css_secure_content_accelerator:2.0:::::::*
cpe:2.3:a:cisco:css11000_content_services_switch::::::::
cpe:2.3:a:cisco:webns:7.1_0.2.06:::::::*
cpe:2.3:a:cisco:webns:7.10:::::::*
cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.0.3:::::::*
cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.1:::::::*
cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.3.1:::::::*
cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.3_rc1:::::::*
cpe:2.3:a:neoteris:instant_virtual_extranet:3.3.1:::::::*
cpe:2.3:a:novell:edirectory:8.0:::::::*
cpe:2.3:a:novell:edirectory:8.5:::::::*
cpe:2.3:a:novell:imanager:1.5:::::::*
cpe:2.3:a:novell:imanager:2.0:::::::*
cpe:2.3:a:openssl:openssl:0.9.6i:::::::*
cpe:2.3:a:openssl:openssl:0.9.6j:::::::*
cpe:2.3:a:openssl:openssl:0.9.7b:::::::*
cpe:2.3:a:openssl:openssl:0.9.7c:::::::*
cpe:2.3:a:redhat:openssl:0.9.6-15::i386:::::
cpe:2.3:a:dell:bsafe_ssl-j:3.1:::::::*
cpe:2.3:a:sgi:propack:2.3:::::::*
cpe:2.3:a:stonesoft:stonebeat_fullcluster:2.0:::::::*
cpe:2.3:a:stonesoft:stonebeat_fullcluster:2.5:::::::*
cpe:2.3:a:stonesoft:stonegate:1.6.2:::::::*
cpe:2.3:a:stonesoft:stonegate:1.6.3:::::::*
cpe:2.3:a:stonesoft:stonegate:2.0.6:::::::*
cpe:2.3:a:stonesoft:stonegate:2.0.7:::::::*
cpe:2.3:a:tarantella:tarantella_enterprise:3.20:::::::*
cpe:2.3:a:tarantella:tarantella_enterprise:3.30:::::::*
cpe:2.3:h:avaya:s8300:r2.0.1:::::::*
cpe:2.3:h:avaya:s8500:r2.0.0:::::::*
cpe:2.3:h:cisco:gss_4480_global_site_selector::::::::
cpe:2.3:h:cisco:gss_4490_global_site_selector::::::::
cpe:2.3:h:securecomputing:sidewinder:5.2.0.04:::::::*
cpe:2.3:h:securecomputing:sidewinder:5.2.1:::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.0\(3\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.0\(4\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.1\(5\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.2:::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.3\(2\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.3\(3.102\):::::::*
cpe:2.3:a:4d:webstar:5.2:::::::*
cpe:2.3:a:4d:webstar:5.2.1:::::::*
cpe:2.3:a:4d:webstar:5.2.2:::::::*
cpe:2.3:a:avaya:intuity_audix:s3210:::::::*
cpe:2.3:a:avaya:intuity_audix:s3400:::::::*
cpe:2.3:a:avaya:vsu:5x:::::::*
cpe:2.3:a:avaya:vsu:7500_r2.0.1:::::::*
cpe:2.3:a:checkpoint:provider-1:4.1:sp2::::::
cpe:2.3:a:checkpoint:provider-1:4.1:sp3::::::
cpe:2.3:a:cisco:application_and_content_networking_software::::::::
cpe:2.3:a:cisco:css_secure_content_accelerator:1.0:::::::*
cpe:2.3:a:cisco:webns:6.10_b4:::::::*
cpe:2.3:a:cisco:webns:7.1_0.1.02:::::::*
cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.0.1:::::::*
cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.0.2:::::::*
cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.2_rc2:::::::*
cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.3:::::::*
cpe:2.3:a:neoteris:instant_virtual_extranet:3.2:::::::*
cpe:2.3:a:neoteris:instant_virtual_extranet:3.3:::::::*
cpe:2.3:a:novell:edirectory:8.7.1:::::::*
cpe:2.3:a:novell:edirectory:8.7.1:sp1::::::
cpe:2.3:a:openssl:openssl:0.9.6g:::::::*
cpe:2.3:a:openssl:openssl:0.9.6h:::::::*
cpe:2.3:a:openssl:openssl:0.9.7:beta3::::::
cpe:2.3:a:openssl:openssl:0.9.7a:::::::*
cpe:2.3:a:dell:bsafe_ssl-j:3.0:::::::*
cpe:2.3:a:dell:bsafe_ssl-j:3.0.1:::::::*
cpe:2.3:a:stonesoft:stonebeat_fullcluster:1_2.0:::::::*
cpe:2.3:a:stonesoft:stonebeat_fullcluster:1_3.0:::::::*
cpe:2.3:a:stonesoft:stonebeat_webcluster:2.5:::::::*
cpe:2.3:a:stonesoft:stonegate:1.5.17:::::::*
cpe:2.3:a:stonesoft:stonegate:1.5.18:::::::*
cpe:2.3:a:stonesoft:stonegate:2.0.4:::::::*
cpe:2.3:a:stonesoft:stonegate:2.0.5:::::::*
cpe:2.3:a:stonesoft:stonegate:2.2.1:::::::*
cpe:2.3:a:stonesoft:stonegate:2.2.4:::::::*
cpe:2.3:a:vmware:gsx_server:3.0_build_7592:::::::*
cpe:2.3:h:avaya:s8300:r2.0.0:::::::*
cpe:2.3:h:cisco:call_manager::::::::
cpe:2.3:h:cisco:content_services_switch_11500::::::::
cpe:2.3:h:securecomputing:sidewinder:5.2.0.02:::::::*
cpe:2.3:h:securecomputing:sidewinder:5.2.0.03:::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.0\(1\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.0\(2\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.1\(3\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.1\(4\):::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.3:::::::*
cpe:2.3:o:cisco:pix_firewall_software:6.3\(1\):::::::*

Information

Published : 2004-11-22 21:00

Updated : 2021-11-08 07:48

NVD link : CVE-2004-0112

Mitre link : CVE-2004-0112

JSON object : View

CWE

NVD-CWE-Other

Products Affected

sgi

propack

securecomputing

sidewinder

tarantella

tarantella_enterprise

avaya

vsu
s8500
converged_communications_server
sg208
sg200
intuity_audix
s8700
sg203
s8300
sg5

vmware

gsx_server

cisco

okena_stormwatch
application_and_content_networking_software
content_services_switch_11500
ios
pix_firewall
mds_9000
gss_4480_global_site_selector
ciscoworks_common_services
access_registrar
css11000_content_services_switch
ciscoworks_common_management_foundation
secure_content_accelerator
firewall_services_module
threat_response
pix_firewall_software
webns
call_manager
gss_4490_global_site_selector
css_secure_content_accelerator

hp-ux
apache-based_web_server
aaa_server
wbem

sun

crypto_accelerator_4000

novell

edirectory
imanager

stonesoft

stonebeat_securitycluster
stonegate
stonebeat_fullcluster
stonebeat_webcluster
servercluster

neoteris

instant_virtual_extranet

bluecoat

cacheos_ca_sa
proxysg

redhat

enterprise_linux
openssl
linux
enterprise_linux_desktop

apple

mac_os_x
mac_os_x_server

webstar

sco

openserver

freebsd

freebsd

checkpoint

vpn-1
provider-1
firewall-1

symantec

clientless_vpn_gateway_4400

openssl

openssl

lite

speed_technologies_litespeed_web_server

openbsd

openbsd

dell

bsafe_ssl-j

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.securityfocus.com/bid/9899", "name": "9899", "tags": ["Vendor Advisory"], "refsource": "BID"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA04-078A.html", "name": "TA04-078A", "tags": ["Third Party Advisory", "US Government Resource"], "refsource": "CERT"}, {"url": "http://www.openssl.org/news/secadv_20040317.txt", "name": "http://www.openssl.org/news/secadv_20040317.txt", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.uniras.gov.uk/vuls/2004/224012/index.htm", "name": "http://www.uniras.gov.uk/vuls/2004/224012/index.htm", "tags": [], "refsource": "MISC"}, {"url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000834", "name": "CLA-2004:834", "tags": [], "refsource": "CONECTIVA"}, {"url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-005.txt.asc", "name": "NetBSD-SA2004-005", "tags": [], "refsource": "NETBSD"}, {"url": "http://www.redhat.com/support/errata/RHSA-2004-121.html", "name": "RHSA-2004:121", "tags": [], "refsource": "REDHAT"}, {"url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.10/SCOSA-2004.10.txt", "name": "SCOSA-2004.10", "tags": [], "refsource": "SCO"}, {"url": "http://www.novell.com/linux/security/advisories/2004_07_openssl.html", "name": "SuSE-SA:2004:007", "tags": [], "refsource": "SUSE"}, {"url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57524", "name": "57524", "tags": [], "refsource": "SUNALERT"}, {"url": "http://docs.info.apple.com/article.html?artnum=61798", "name": "http://docs.info.apple.com/article.html?artnum=61798", "tags": [], "refsource": "CONFIRM"}, {"url": "http://lists.apple.com/mhonarc/security-announce/msg00045.html", "name": "http://lists.apple.com/mhonarc/security-announce/msg00045.html", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.kb.cert.org/vuls/id/484726", "name": "VU#484726", "tags": ["US Government Resource"], "refsource": "CERT-VN"}, {"url": "http://www.cisco.com/warp/public/707/cisco-sa-20040317-openssl.shtml", "name": "20040317 Cisco OpenSSL Implementation Vulnerability", "tags": [], "refsource": "CISCO"}, {"url": "http://security.gentoo.org/glsa/glsa-200403-03.xml", "name": "GLSA-200403-03", "tags": [], "refsource": "GENTOO"}, {"url": "http://www.redhat.com/support/errata/RHSA-2004-120.html", "name": "RHSA-2004:120", "tags": [], "refsource": "REDHAT"}, {"url": "http://www.trustix.org/errata/2004/0012", "name": "2004-0012", "tags": [], "refsource": "TRUSTIX"}, {"url": "http://www.ciac.org/ciac/bulletins/o-101.shtml", "name": "O-101", "tags": [], "refsource": "CIAC"}, {"url": "http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html", "name": "APPLE-SA-2005-08-15", "tags": [], "refsource": "APPLE"}, {"url": "http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html", "name": "APPLE-SA-2005-08-17", "tags": [], "refsource": "APPLE"}, {"url": "http://secunia.com/advisories/11139", "name": "11139", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.slackware.org/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.455961", "name": "SSA:2004-077", "tags": [], "refsource": "SLACKWARE"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:023", "name": "MDKSA-2004:023", "tags": [], "refsource": "MANDRAKE"}, {"url": "http://marc.info/?l=bugtraq&m=108403806509920&w=2", "name": "SSRT4717", "tags": [], "refsource": "HP"}, {"url": "http://marc.info/?l=bugtraq&m=107953412903636&w=2", "name": "20040317 New OpenSSL releases fix denial of service attacks [17 March 2004]", "tags": [], "refsource": "BUGTRAQ"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15508", "name": "openssl-kerberos-ciphersuites-dos(15508)", "tags": [], "refsource": "XF"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9580", "name": "oval:org.mitre.oval:def:9580", "tags": [], "refsource": "OVAL"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A928", "name": "oval:org.mitre.oval:def:928", "tags": [], "refsource": "OVAL"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1049", "name": "oval:org.mitre.oval:def:1049", "tags": [], "refsource": "OVAL"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2004-0112", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2004-11-23T05:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:cisco:firewall_services_module:1.1.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:cisco:firewall_services_module:1.1.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:cisco:firewall_services_module:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:hp:apache-based_web_server:2.0.43.04:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:symantec:clientless_vpn_gateway_4400:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:hp:aaa_server:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:hp:apache-based_web_server:2.0.43.00:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:cisco:firewall_services_module:1.1_\\(3.005\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:cisco:firewall_services_module:2.1_\\(0.208\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:ciscoworks_common_management_foundation:2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:sg208:4.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:sg5:4.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:freebsd:freebsd:4.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:freebsd:freebsd:5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:hp:hp-ux:11.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:hp:hp-ux:8.05:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:linux:7.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:linux:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:sg203:4.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:sg208:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:freebsd:freebsd:4.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:freebsd:freebsd:4.8:releng:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:linux:7.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:sg200:4.31.29:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:sg200:4.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:sg203:4.31.29:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x_server:10.3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:freebsd:freebsd:5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:freebsd:freebsd:5.2.1:release:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:workstation_server:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:ciscoworks_common_services:2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:converged_communications_server:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:sg5:4.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:sg5:4.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:freebsd:freebsd:5.1:release:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:freebsd:freebsd:5.1:releng:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:openbsd:openbsd:3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:openbsd:openbsd:3.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_server:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:sco:openserver:5.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:sco:openserver:5.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:cisco:ios:12.1\\(11b\\)e12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:ios:12.1\\(11b\\)e14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:ios:12.1\\(11\\)e:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:ios:12.1\\(11b\\)e:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:ios:12.2sy:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:ios:12.2za:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:ios:12.2\\(14\\)sy:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:ios:12.2\\(14\\)sy1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:ios:12.1\\(13\\)e9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:ios:12.1\\(19\\)e1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:4d:webstar:4.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:intuity_audix:*:*:lx:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:4d:webstar:5.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:4d:webstar:5.3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:vsu:2000_r2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:vsu:5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:firewall-1:next_generation_fp0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:firewall-1:next_generation_fp1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:vpn-1:next_generation_fp1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:vpn-1:next_generation_fp2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:okena_stormwatch:3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:pix_firewall:6.2.2_.111:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:webns:7.10_.0.06s:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:webns:7.2_0.0.03:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:wbem:a.01.05.08:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.3_rc2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.3_rc3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:edirectory:8.5.12a:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:edirectory:8.5.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.6c:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.6d:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.6k:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:redhat:openssl:0.9.6b-3:*:i386:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:redhat:openssl:0.9.7a-2:*:i386:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sgi:propack:2.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sgi:propack:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonebeat_fullcluster:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonebeat_securitycluster:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:1.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:1.7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:2.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:2.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:tarantella:tarantella_enterprise:3.40:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:vmware:gsx_server:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:s8500:r2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:s8700:r2.0.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:cisco:mds_9000:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:cisco:secure_content_accelerator:10000:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:intuity_audix:5.1.46:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:vsu:500:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:vsu:5000_r2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:firewall-1:next_generation_fp2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:provider-1:4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:provider-1:4.1:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:vpn-1:vsx_ng_with_application_intelligence:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:access_registrar:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:threat_response:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:webns:6.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:wbem:a.02.00.00:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:wbem:a.02.00.01:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.2_rc1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:neoteris:instant_virtual_extranet:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:neoteris:instant_virtual_extranet:3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:edirectory:8.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:edirectory:8.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.6e:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.6f:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.7:beta1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.7:beta2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:redhat:openssl:0.9.7a-2:*:i386_dev:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:redhat:openssl:0.9.7a-2:*:i386_perl:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:servercluster:2.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:servercluster:2.5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonebeat_securitycluster:2.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonebeat_webcluster:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:1.7.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:vmware:gsx_server:2.0.1_build_2129:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:vmware:gsx_server:2.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:vmware:gsx_server:2.5.1_build_5336:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:s8700:r2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:bluecoat:proxysg:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:securecomputing:sidewinder:5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:securecomputing:sidewinder:5.2.0.01:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:bluecoat:cacheos_ca_sa:4.1.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.1\\(1\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.1\\(2\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.2\\(3\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.2\\(3.100\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:securecomputing:sidewinder:5.2.1.02:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:sun:crypto_accelerator_4000:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:bluecoat:cacheos_ca_sa:4.1.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.0\\(4.101\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.2\\(1\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.2\\(2\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.3\\(3.109\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:4d:webstar:5.2.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:4d:webstar:5.2.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:vsu:100_r2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:vsu:10000_r2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:firewall-1:*:*:vsx-ng-ai:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:firewall-1:2.0:*:gx:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:provider-1:4.1:sp4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:vpn-1:next_generation_fp0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:css_secure_content_accelerator:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:css11000_content_services_switch:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:webns:7.1_0.2.06:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:webns:7.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.3_rc1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:neoteris:instant_virtual_extranet:3.3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:edirectory:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:edirectory:8.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:imanager:1.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:imanager:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.6i:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.6j:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.7b:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.7c:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:redhat:openssl:0.9.6-15:*:i386:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:dell:bsafe_ssl-j:3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sgi:propack:2.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonebeat_fullcluster:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonebeat_fullcluster:2.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:1.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:1.6.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:2.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:2.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:tarantella:tarantella_enterprise:3.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:tarantella:tarantella_enterprise:3.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:s8300:r2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:s8500:r2.0.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:cisco:gss_4480_global_site_selector:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:cisco:gss_4490_global_site_selector:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:securecomputing:sidewinder:5.2.0.04:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:securecomputing:sidewinder:5.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.0\\(3\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.0\\(4\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.1\\(5\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.3\\(2\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.3\\(3.102\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:4d:webstar:5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:4d:webstar:5.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:4d:webstar:5.2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:intuity_audix:s3210:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:intuity_audix:s3400:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:vsu:5x:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:vsu:7500_r2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:provider-1:4.1:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:checkpoint:provider-1:4.1:sp3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:application_and_content_networking_software:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:css_secure_content_accelerator:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:webns:6.10_b4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:webns:7.1_0.1.02:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.2_rc2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:lite:speed_technologies_litespeed_web_server:1.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:neoteris:instant_virtual_extranet:3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:neoteris:instant_virtual_extranet:3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:edirectory:8.7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:edirectory:8.7.1:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.6g:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.6h:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.7:beta3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:openssl:openssl:0.9.7a:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:dell:bsafe_ssl-j:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:dell:bsafe_ssl-j:3.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonebeat_fullcluster:1_2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonebeat_fullcluster:1_3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonebeat_webcluster:2.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:1.5.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:1.5.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:2.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:2.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:2.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:stonesoft:stonegate:2.2.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:vmware:gsx_server:3.0_build_7592:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:s8300:r2.0.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:cisco:call_manager:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:cisco:content_services_switch_11500:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:securecomputing:sidewinder:5.2.0.02:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:securecomputing:sidewinder:5.2.0.03:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.0\\(1\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.0\\(2\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.1\\(3\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.1\\(4\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:cisco:pix_firewall_software:6.3\\(1\\):*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2021-11-08T15:48Z"}

5.0 /10