CVE-2004-0079
Summary
| CVE | CVE-2004-0079 |
|---|---|
| State | PUBLISHED |
| Assigner | mitre |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2004-11-23 05:00:00 UTC |
| Updated | 2025-04-03 01:03:51 UTC |
| Description | The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. |
Risk And Classification
Primary CVSS: v3.1 7.5 HIGH from [email protected]
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Problem Types: CWE-476 | n/a | CWE-476 CWE-476 NULL Pointer Dereference
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 3.1 | [email protected] | Primary | 7.5 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
| 3.1 | ADP | DECLARED | 7.5 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
| 3.1 | 134c704f-9b21-4f2e-91b3-4a467353bcc0 | Secondary | 7.5 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
| 2.0 | [email protected] | Primary | 5 | AV:N/AC:L/Au:N/C:N/I:N/A:P |
CVSS v3.1 Breakdown
Attack Vector
NetworkAttack Complexity
LowPrivileges Required
NoneUser Interaction
NoneScope
UnchangedConfidentiality
NoneIntegrity
NoneAvailability
HighCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS v2.0 Breakdown
Access Vector
NetworkAccess Complexity
LowAuthentication
NoneConfidentiality
NoneIntegrity
NoneAvailability
PartialAV:N/AC:L/Au:N/C:N/I:N/A:P
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | 4d | Webstar | 4.0 | All | All | All |
| Application | 4d | Webstar | 5.2 | All | All | All |
| Application | 4d | Webstar | 5.2.1 | All | All | All |
| Application | 4d | Webstar | 5.2.2 | All | All | All |
| Application | 4d | Webstar | 5.2.3 | All | All | All |
| Application | 4d | Webstar | 5.2.4 | All | All | All |
| Application | 4d | Webstar | 5.3 | All | All | All |
| Application | 4d | Webstar | 5.3.1 | All | All | All |
| Operating System | Apple | Mac Os X | 10.3.3 | All | All | All |
| Operating System | Apple | Mac Os X Server | 10.3.3 | All | All | All |
| Hardware | Avaya | Converged Communications Server | 2.0 | All | All | All |
| Application | Avaya | Intuity Audix | All | All | lx | All |
| Application | Avaya | Intuity Audix | 5.1.46 | All | All | All |
| Application | Avaya | Intuity Audix | s3210 | All | All | All |
| Application | Avaya | Intuity Audix | s3400 | All | All | All |
| Hardware | Avaya | S8300 | r2.0.0 | All | All | All |
| Hardware | Avaya | S8300 | r2.0.1 | All | All | All |
| Hardware | Avaya | S8500 | r2.0.0 | All | All | All |
| Hardware | Avaya | S8500 | r2.0.1 | All | All | All |
| Hardware | Avaya | S8700 | r2.0.0 | All | All | All |
| Hardware | Avaya | S8700 | r2.0.1 | All | All | All |
| Hardware | Avaya | Sg200 | 4.31.29 | All | All | All |
| Hardware | Avaya | Sg200 | 4.4 | All | All | All |
| Hardware | Avaya | Sg203 | 4.31.29 | All | All | All |
| Hardware | Avaya | Sg203 | 4.4 | All | All | All |
| Hardware | Avaya | Sg208 | All | All | All | All |
| Hardware | Avaya | Sg208 | 4.4 | All | All | All |
| Hardware | Avaya | Sg5 | 4.2 | All | All | All |
| Hardware | Avaya | Sg5 | 4.3 | All | All | All |
| Hardware | Avaya | Sg5 | 4.4 | All | All | All |
| Application | Avaya | Vsu | 10000_r2.0.1 | All | All | All |
| Application | Avaya | Vsu | 100_r2.0.1 | All | All | All |
| Application | Avaya | Vsu | 2000_r2.0.1 | All | All | All |
| Application | Avaya | Vsu | 5 | All | All | All |
| Application | Avaya | Vsu | 500 | All | All | All |
| Application | Avaya | Vsu | 5000_r2.0.1 | All | All | All |
| Application | Avaya | Vsu | 5x | All | All | All |
| Application | Avaya | Vsu | 7500_r2.0.1 | All | All | All |
| Operating System | Bluecoat | Cacheos Ca Sa | 4.1.10 | All | All | All |
| Operating System | Bluecoat | Cacheos Ca Sa | 4.1.12 | All | All | All |
| Hardware | Bluecoat | Proxysg | All | All | All | All |
| Application | Checkpoint | Firewall-1 | All | All | vsx-ng-ai | All |
| Application | Checkpoint | Firewall-1 | 2.0 | All | gx | All |
| Application | Checkpoint | Firewall-1 | next_generation_fp0 | All | All | All |
| Application | Checkpoint | Firewall-1 | next_generation_fp1 | All | All | All |
| Application | Checkpoint | Firewall-1 | next_generation_fp2 | All | All | All |
| Application | Checkpoint | Provider-1 | 4.1 | All | All | All |
| Application | Checkpoint | Provider-1 | 4.1 | sp1 | All | All |
| Application | Checkpoint | Provider-1 | 4.1 | sp2 | All | All |
| Application | Checkpoint | Provider-1 | 4.1 | sp3 | All | All |
| Application | Checkpoint | Provider-1 | 4.1 | sp4 | All | All |
| Application | Checkpoint | Vpn-1 | next_generation_fp0 | All | All | All |
| Application | Checkpoint | Vpn-1 | next_generation_fp1 | All | All | All |
| Application | Checkpoint | Vpn-1 | next_generation_fp2 | All | All | All |
| Application | Checkpoint | Vpn-1 | vsx_ng_with_application_intelligence | All | All | All |
| Application | Cisco | Access Registrar | All | All | All | All |
| Application | Cisco | Application And Content Networking Software | All | All | All | All |
| Hardware | Cisco | Call Manager | All | All | All | All |
| Application | Cisco | Ciscoworks Common Management Foundation | 2.1 | All | All | All |
| Application | Cisco | Ciscoworks Common Services | 2.2 | All | All | All |
| Hardware | Cisco | Content Services Switch 11500 | All | All | All | All |
| Application | Cisco | Css11000 Content Services Switch | All | All | All | All |
| Application | Cisco | Css Secure Content Accelerator | 1.0 | All | All | All |
| Application | Cisco | Css Secure Content Accelerator | 2.0 | All | All | All |
| Hardware | Cisco | Firewall Services Module | All | All | All | All |
| Hardware | Cisco | Firewall Services Module | 1.1.2 | All | All | All |
| Hardware | Cisco | Firewall Services Module | 1.1.3 | All | All | All |
| Hardware | Cisco | Firewall Services Module | 1.1_\(3.005\) | All | All | All |
| Hardware | Cisco | Firewall Services Module | 2.1_\(0.208\) | All | All | All |
| Hardware | Cisco | Gss 4480 Global Site Selector | All | All | All | All |
| Hardware | Cisco | Gss 4490 Global Site Selector | All | All | All | All |
| Operating System | Cisco | Ios | 12.1\(11b\)e | All | All | All |
| Operating System | Cisco | Ios | 12.1\(11b\)e12 | All | All | All |
| Operating System | Cisco | Ios | 12.1\(11b\)e14 | All | All | All |
| Operating System | Cisco | Ios | 12.1\(11\)e | All | All | All |
| Operating System | Cisco | Ios | 12.1\(13\)e9 | All | All | All |
| Operating System | Cisco | Ios | 12.1\(19\)e1 | All | All | All |
| Operating System | Cisco | Ios | 12.2sy | All | All | All |
| Operating System | Cisco | Ios | 12.2za | All | All | All |
| Operating System | Cisco | Ios | 12.2\(14\)sy | All | All | All |
| Operating System | Cisco | Ios | 12.2\(14\)sy1 | All | All | All |
| Hardware | Cisco | Mds 9000 | All | All | All | All |
| Application | Cisco | Okena Stormwatch | 3.2 | All | All | All |
| Application | Cisco | Pix Firewall | 6.2.2_.111 | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.0 | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.0\(1\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.0\(2\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.0\(3\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.0\(4.101\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.0\(4\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.1 | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.1\(1\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.1\(2\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.1\(3\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.1\(4\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.1\(5\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.2 | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.2\(1\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.2\(2\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.2\(3.100\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.2\(3\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.3 | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.3\(1\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.3\(2\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.3\(3.102\) | All | All | All |
| Operating System | Cisco | Pix Firewall Software | 6.3\(3.109\) | All | All | All |
| Hardware | Cisco | Secure Content Accelerator | 10000 | All | All | All |
| Application | Cisco | Threat Response | All | All | All | All |
| Application | Cisco | Webns | 6.10 | All | All | All |
| Application | Cisco | Webns | 6.10_b4 | All | All | All |
| Application | Cisco | Webns | 7.10 | All | All | All |
| Application | Cisco | Webns | 7.10_.0.06s | All | All | All |
| Application | Cisco | Webns | 7.1_0.1.02 | All | All | All |
| Application | Cisco | Webns | 7.1_0.2.06 | All | All | All |
| Application | Cisco | Webns | 7.2_0.0.03 | All | All | All |
| Application | Dell | Bsafe Ssl-j | 3.0 | All | All | All |
| Application | Dell | Bsafe Ssl-j | 3.0.1 | All | All | All |
| Application | Dell | Bsafe Ssl-j | 3.1 | All | All | All |
| Operating System | Freebsd | Freebsd | 4.8 | All | All | All |
| Operating System | Freebsd | Freebsd | 4.8 | releng | All | All |
| Operating System | Freebsd | Freebsd | 4.9 | All | All | All |
| Operating System | Freebsd | Freebsd | 5.1 | All | All | All |
| Operating System | Freebsd | Freebsd | 5.1 | release | All | All |
| Operating System | Freebsd | Freebsd | 5.1 | releng | All | All |
| Operating System | Freebsd | Freebsd | 5.2 | All | All | All |
| Operating System | Freebsd | Freebsd | 5.2.1 | release | All | All |
| Hardware | Hp | Aaa Server | All | All | All | All |
| Hardware | Hp | Apache-based Web Server | 2.0.43.00 | All | All | All |
| Hardware | Hp | Apache-based Web Server | 2.0.43.04 | All | All | All |
| Operating System | Hp | Hp-ux | 11.00 | All | All | All |
| Operating System | Hp | Hp-ux | 11.11 | All | All | All |
| Operating System | Hp | Hp-ux | 11.23 | All | All | All |
| Operating System | Hp | Hp-ux | 8.05 | All | All | All |
| Application | Hp | Wbem | a.01.05.08 | All | All | All |
| Application | Hp | Wbem | a.02.00.00 | All | All | All |
| Application | Hp | Wbem | a.02.00.01 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.0.1 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.0.2 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.0.3 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.1 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.1.1 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.2.1 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.2.2 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.2_rc1 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.2_rc2 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.3 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.3.1 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.3_rc1 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.3_rc2 | All | All | All |
| Application | Lite | Speed Technologies Litespeed Web Server | 1.3_rc3 | All | All | All |
| Application | Neoteris | Instant Virtual Extranet | 3.0 | All | All | All |
| Application | Neoteris | Instant Virtual Extranet | 3.1 | All | All | All |
| Application | Neoteris | Instant Virtual Extranet | 3.2 | All | All | All |
| Application | Neoteris | Instant Virtual Extranet | 3.3 | All | All | All |
| Application | Neoteris | Instant Virtual Extranet | 3.3.1 | All | All | All |
| Application | Novell | Edirectory | 8.0 | All | All | All |
| Application | Novell | Edirectory | 8.5 | All | All | All |
| Application | Novell | Edirectory | 8.5.12a | All | All | All |
| Application | Novell | Edirectory | 8.5.27 | All | All | All |
| Application | Novell | Edirectory | 8.6.2 | All | All | All |
| Application | Novell | Edirectory | 8.7 | All | All | All |
| Application | Novell | Edirectory | 8.7.1 | All | All | All |
| Application | Novell | Edirectory | 8.7.1 | sp1 | All | All |
| Application | Novell | Imanager | 1.5 | All | All | All |
| Application | Novell | Imanager | 2.0 | All | All | All |
| Operating System | Openbsd | Openbsd | 3.3 | All | All | All |
| Operating System | Openbsd | Openbsd | 3.4 | All | All | All |
| Application | Openssl | Openssl | 0.9.6c | All | All | All |
| Application | Openssl | Openssl | 0.9.6d | All | All | All |
| Application | Openssl | Openssl | 0.9.6e | All | All | All |
| Application | Openssl | Openssl | 0.9.6f | All | All | All |
| Application | Openssl | Openssl | 0.9.6g | All | All | All |
| Application | Openssl | Openssl | 0.9.6h | All | All | All |
| Application | Openssl | Openssl | 0.9.6i | All | All | All |
| Application | Openssl | Openssl | 0.9.6j | All | All | All |
| Application | Openssl | Openssl | 0.9.6k | All | All | All |
| Application | Openssl | Openssl | 0.9.7 | All | All | All |
| Application | Openssl | Openssl | 0.9.7 | beta1 | All | All |
| Application | Openssl | Openssl | 0.9.7 | beta2 | All | All |
| Application | Openssl | Openssl | 0.9.7 | beta3 | All | All |
| Application | Openssl | Openssl | 0.9.7a | All | All | All |
| Application | Openssl | Openssl | 0.9.7b | All | All | All |
| Application | Openssl | Openssl | 0.9.7c | All | All | All |
| Operating System | Redhat | Enterprise Linux | 3.0 | All | advanced_server | All |
| Operating System | Redhat | Enterprise Linux | 3.0 | All | enterprise_server | All |
| Operating System | Redhat | Enterprise Linux | 3.0 | All | workstation_server | All |
| Operating System | Redhat | Enterprise Linux Desktop | 3.0 | All | All | All |
| Operating System | Redhat | Linux | 7.2 | All | All | All |
| Operating System | Redhat | Linux | 7.3 | All | All | All |
| Operating System | Redhat | Linux | 8.0 | All | All | All |
| Application | Redhat | Openssl | 0.9.6-15 | All | i386 | All |
| Application | Redhat | Openssl | 0.9.6b-3 | All | i386 | All |
| Application | Redhat | Openssl | 0.9.7a-2 | All | i386 | All |
| Application | Redhat | Openssl | 0.9.7a-2 | All | i386_dev | All |
| Application | Redhat | Openssl | 0.9.7a-2 | All | i386_perl | All |
| Operating System | Sco | Openserver | 5.0.6 | All | All | All |
| Operating System | Sco | Openserver | 5.0.7 | All | All | All |
| Hardware | Securecomputing | Sidewinder | 5.2 | All | All | All |
| Hardware | Securecomputing | Sidewinder | 5.2.0.01 | All | All | All |
| Hardware | Securecomputing | Sidewinder | 5.2.0.02 | All | All | All |
| Hardware | Securecomputing | Sidewinder | 5.2.0.03 | All | All | All |
| Hardware | Securecomputing | Sidewinder | 5.2.0.04 | All | All | All |
| Hardware | Securecomputing | Sidewinder | 5.2.1 | All | All | All |
| Hardware | Securecomputing | Sidewinder | 5.2.1.02 | All | All | All |
| Application | Sgi | Propack | 2.3 | All | All | All |
| Application | Sgi | Propack | 2.4 | All | All | All |
| Application | Sgi | Propack | 3.0 | All | All | All |
| Application | Stonesoft | Servercluster | 2.5 | All | All | All |
| Application | Stonesoft | Servercluster | 2.5.2 | All | All | All |
| Application | Stonesoft | Stonebeat Fullcluster | 1_2.0 | All | All | All |
| Application | Stonesoft | Stonebeat Fullcluster | 1_3.0 | All | All | All |
| Application | Stonesoft | Stonebeat Fullcluster | 2.0 | All | All | All |
| Application | Stonesoft | Stonebeat Fullcluster | 2.5 | All | All | All |
| Application | Stonesoft | Stonebeat Fullcluster | 3.0 | All | All | All |
| Application | Stonesoft | Stonebeat Securitycluster | 2.0 | All | All | All |
| Application | Stonesoft | Stonebeat Securitycluster | 2.5 | All | All | All |
| Application | Stonesoft | Stonebeat Webcluster | 2.0 | All | All | All |
| Application | Stonesoft | Stonebeat Webcluster | 2.5 | All | All | All |
| Application | Stonesoft | Stonegate | 1.5.17 | All | All | All |
| Application | Stonesoft | Stonegate | 1.5.18 | All | All | All |
| Application | Stonesoft | Stonegate | 1.6.2 | All | All | All |
| Application | Stonesoft | Stonegate | 1.6.3 | All | All | All |
| Application | Stonesoft | Stonegate | 1.7 | All | All | All |
| Application | Stonesoft | Stonegate | 1.7.1 | All | All | All |
| Application | Stonesoft | Stonegate | 1.7.2 | All | All | All |
| Application | Stonesoft | Stonegate | 2.0.1 | All | All | All |
| Application | Stonesoft | Stonegate | 2.0.4 | All | All | All |
| Application | Stonesoft | Stonegate | 2.0.5 | All | All | All |
| Application | Stonesoft | Stonegate | 2.0.6 | All | All | All |
| Application | Stonesoft | Stonegate | 2.0.7 | All | All | All |
| Application | Stonesoft | Stonegate | 2.0.8 | All | All | All |
| Application | Stonesoft | Stonegate | 2.0.9 | All | All | All |
| Application | Stonesoft | Stonegate | 2.1 | All | All | All |
| Application | Stonesoft | Stonegate | 2.2 | All | All | All |
| Application | Stonesoft | Stonegate | 2.2.1 | All | All | All |
| Application | Stonesoft | Stonegate | 2.2.4 | All | All | All |
| Application | Stonesoft | Stonegate Vpn Client | 1.7 | All | All | All |
| Application | Stonesoft | Stonegate Vpn Client | 1.7.2 | All | All | All |
| Application | Stonesoft | Stonegate Vpn Client | 2.0 | All | All | All |
| Application | Stonesoft | Stonegate Vpn Client | 2.0.7 | All | All | All |
| Application | Stonesoft | Stonegate Vpn Client | 2.0.8 | All | All | All |
| Application | Stonesoft | Stonegate Vpn Client | 2.0.9 | All | All | All |
| Hardware | Sun | Crypto Accelerator 4000 | 1.0 | All | All | All |
| Hardware | Symantec | Clientless Vpn Gateway 4400 | 5.0 | All | All | All |
| Application | Tarantella | Tarantella Enterprise | 3.20 | All | All | All |
| Application | Tarantella | Tarantella Enterprise | 3.30 | All | All | All |
| Application | Tarantella | Tarantella Enterprise | 3.40 | All | All | All |
| Application | Vmware | Gsx Server | 2.0 | All | All | All |
| Application | Vmware | Gsx Server | 2.0.1_build_2129 | All | All | All |
| Application | Vmware | Gsx Server | 2.5.1 | All | All | All |
| Application | Vmware | Gsx Server | 2.5.1_build_5336 | All | All | All |
| Application | Vmware | Gsx Server | 3.0_build_7592 | All | All | All |
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| www.openssl.org/news/secadv_20040317.txt | af854a3a-2127-422b-91ae-364da2661108 | www.openssl.org | Third Party Advisory |
| rhn.redhat.com | Red Hat Support | af854a3a-2127-422b-91ae-364da2661108 | www.redhat.com | Broken Link |
| ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-005.txt.asc | af854a3a-2127-422b-91ae-364da2661108 | ftp.netbsd.org | Broken Link |
| Support | af854a3a-2127-422b-91ae-364da2661108 | www.redhat.com | Broken Link |
| www.trustix.org/errata/2004/0012 | af854a3a-2127-422b-91ae-364da2661108 | www.trustix.org | Broken Link |
| Debian -- Security Information -- DSA-465-1 openssl | af854a3a-2127-422b-91ae-364da2661108 | www.debian.org | Third Party Advisory |
| Home - Conectiva | af854a3a-2127-422b-91ae-364da2661108 | distro.conectiva.com.br | Broken Link |
| Secunia - Advisories - Avaya Products OpenSSL SSL/TLS Handshake Denial of Service | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | Broken Link |
| Apple security updates | af854a3a-2127-422b-91ae-364da2661108 | docs.info.apple.com | Broken Link |
| Security Announcement | af854a3a-2127-422b-91ae-364da2661108 | www.novell.com | Broken Link |
| 'FW: [security bulletin] SSRT4717 Management Agents for HP-UX Remote DoS' - MARC | af854a3a-2127-422b-91ae-364da2661108 | marc.info | Mailing List |
| Secunia - Advisories - OpenSSL SSL/TLS Handshake Denial of Service Vulnerabilities | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | Broken Link |
| Cisco - Networking, Cloud, and Cybersecurity Solutions | af854a3a-2127-422b-91ae-364da2661108 | www.cisco.com | Broken Link |
| Repository / Oval Repository | af854a3a-2127-422b-91ae-364da2661108 | oval.cisecurity.org | Broken Link |
| Lexmark - United States | af854a3a-2127-422b-91ae-364da2661108 | support.lexmark.com | Broken Link |
| IBM X-Force Exchange | af854a3a-2127-422b-91ae-364da2661108 | exchange.xforce.ibmcloud.com | Third Party Advisory, VDB Entry |
| APPLE-SA-2005-08-17 Security Update 2005-007 v1.1 | af854a3a-2127-422b-91ae-364da2661108 | lists.apple.com | Mailing List |
| Mandriva Security Advisories | af854a3a-2127-422b-91ae-364da2661108 | www.mandriva.com | Third Party Advisory |
| Repository / Oval Repository | af854a3a-2127-422b-91ae-364da2661108 | oval.cisecurity.org | Broken Link |
| 'New OpenSSL releases fix denial of service attacks [17 March 2004]' - MARC | af854a3a-2127-422b-91ae-364da2661108 | marc.info | Mailing List |
| ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:05.openssl.asc | af854a3a-2127-422b-91ae-364da2661108 | ftp.freebsd.org | Broken Link |
| FedoraNEWS.ORG | af854a3a-2127-422b-91ae-364da2661108 | fedoranews.org | Third Party Advisory |
| Repository / Oval Repository | af854a3a-2127-422b-91ae-364da2661108 | oval.cisecurity.org | Broken Link |
| Secunia - Advisories - Red Hat update for openssl | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | Broken Link |
| The Slackware Linux Project: Slackware Security Advisories | af854a3a-2127-422b-91ae-364da2661108 | www.slackware.org | Broken Link |
| sunsolve.sun.com/pub-cgi/retrieve.pl | af854a3a-2127-422b-91ae-364da2661108 | sunsolve.sun.com | Broken Link |
| US-CERT Vulnerability Note VU#288574 | af854a3a-2127-422b-91ae-364da2661108 | www.kb.cert.org | Third Party Advisory, US Government Resource |
| APPLE-SA-2005-08-15 Security Update 2005-007 | af854a3a-2127-422b-91ae-364da2661108 | lists.apple.com | Mailing List |
| Repository / Oval Repository | af854a3a-2127-422b-91ae-364da2661108 | oval.cisecurity.org | Broken Link |
| www.uniras.gov.uk/vuls/2004/224012/index.htm | af854a3a-2127-422b-91ae-364da2661108 | www.uniras.gov.uk | Broken Link |
| Secunia - Advisories - Fedora update for openssl096b | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | Broken Link |
| O-101: OpenSSL Denial of Service Vulnerability | af854a3a-2127-422b-91ae-364da2661108 | www.ciac.org | Broken Link |
| Gentoo Linux Documentation -- Multiple OpenSSL Vulnerabilities | af854a3a-2127-422b-91ae-364da2661108 | security.gentoo.org | Third Party Advisory |
| US-CERT Technical Cyber Security Alert TA04-078A -- Multiple Vulnerabilities in OpenSSL | af854a3a-2127-422b-91ae-364da2661108 | www.us-cert.gov | Broken Link, Third Party Advisory, US Government Resource |
| [SECURITY] Fedora Core 3 Update: openssl096b-0.9.6b-21.42 | af854a3a-2127-422b-91ae-364da2661108 | www.redhat.com | Mailing List |
| rhn.redhat.com | Red Hat Support | af854a3a-2127-422b-91ae-364da2661108 | www.redhat.com | Broken Link |
| Support | af854a3a-2127-422b-91ae-364da2661108 | www.redhat.com | Broken Link |
| 1. Overview: | af854a3a-2127-422b-91ae-364da2661108 | support.avaya.com | Third Party Advisory |
| redhat.com | Red Hat Support | af854a3a-2127-422b-91ae-364da2661108 | www.redhat.com | Broken Link |
| Apple - Lists.apple.com | af854a3a-2127-422b-91ae-364da2661108 | lists.apple.com | Broken Link |
| Secunia - Advisories - Red Hat update for openssl096b | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | Broken Link |
| Repository / Oval Repository | af854a3a-2127-422b-91ae-364da2661108 | oval.cisecurity.org | Broken Link |
| OpenSSL Denial of Service Vulnerabilities | af854a3a-2127-422b-91ae-364da2661108 | www.securityfocus.com | Broken Link, Third Party Advisory, VDB Entry, Vendor Advisory |
| ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.10/SCOSA-2004.10.txt | af854a3a-2127-422b-91ae-364da2661108 | ftp.sco.com | Broken Link |
| Home - The Community's Center for Security | af854a3a-2127-422b-91ae-364da2661108 | www.linuxsecurity.com | Broken Link |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
| Organization | Published | Contributor | Statement |
|---|---|---|---|
| Red Hat | 2007-03-14 | Mark J Cox | Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch. |
There are currently no legacy QID mappings associated with this CVE.