CVE-2004-0079 — HIGH (7.5) — White Hats Nepal

Vulnerability Description

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Cisco	Firewall Services Module	All versions
Hp	Aaa Server	All versions
Hp	Apache-Based Web Server	2.0.43.00
Symantec	Clientless Vpn Gateway 4400	5.0
Cisco	Ciscoworks Common Management Foundation	2.1
Cisco	Ciscoworks Common Services	2.2
Avaya	Converged Communications Server	2.0
Avaya	Sg200	4.4
Avaya	Sg203	4.4
Avaya	Sg208	All versions
Avaya	Sg5	4.2
Apple	Mac Os X	10.3.3
Apple	Mac Os X Server	10.3.3
Freebsd	Freebsd	4.8
Hp	Hp-Ux	8.05
Openbsd	Openbsd	3.3
Redhat	Enterprise Linux	3.0
Redhat	Enterprise Linux Desktop	3.0
Redhat	Linux	7.2
Sco	Openserver	5.0.6

Related Weaknesses (CWE)

CWE-476

References

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:05.openssl.ascBroken Link
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-005.txt.ascBroken Link
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.10/SCOSA-2004.10.txtBroken Link
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000834Broken Link
http://docs.info.apple.com/article.html?artnum=61798Broken Link
http://fedoranews.org/updates/FEDORA-2004-095.shtmlThird Party Advisory
http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.htmlMailing List
http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.htmlMailing List
http://lists.apple.com/mhonarc/security-announce/msg00045.htmlBroken Link
http://marc.info/?l=bugtraq&m=107953412903636&w=2Mailing List
http://marc.info/?l=bugtraq&m=108403806509920&w=2Mailing List
http://secunia.com/advisories/11139Broken Link
http://secunia.com/advisories/17381Broken Link
http://secunia.com/advisories/17398Broken Link
http://secunia.com/advisories/17401Broken Link

FAQ

What is CVE-2004-0079?

CVE-2004-0079 is a vulnerability with a CVSS score of 7.5 (HIGH). The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null ...

How severe is CVE-2004-0079?

CVE-2004-0079 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2004-0079?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Firewall Services Module, Hp Aaa Server, Hp Apache-Based Web Server, Symantec Clientless Vpn Gateway 4400, Cisco Ciscoworks Common Management Foundation.