OpenSSL CVE-2015-3197 Security Bypass Vulnerability

Bugtraq ID: 82237
Class: Design Error
CVE: CVE-2015-3197
Remote: Yes
Local: No
Published: Jan 28 2016 12:00AM
Updated: Dec 15 2017 12:12AM
Credit: Nimrod Aviram and Sebastian Schinzel
Vulnerable: SuSE SUSE Linux Enterprise Server 10 SP4 LTSS
SuSE openSUSE Evergreen 11.4
Slackware Slackware Linux 14.1
Slackware Linux x86_64 -current
Slackware Linux 14.1 x86_64
Slackware Linux 14.0 x86_64
Slackware Linux 14.0
Slackware Linux -current
S.u.S.E. openSUSE 13.1
Redhat Enterprise Virtualization 3
Redhat Enterprise Linux Server AUS 6.5
Redhat Enterprise Linux Server AUS 6.4
Redhat Enterprise Linux Server AUS 6.2
Oracle VM VirtualBox 5.0.14
Oracle VM VirtualBox 5.0.13
Oracle VM VirtualBox 5.0.12
Oracle VM VirtualBox 5.0.11
Oracle VM VirtualBox 5.0.10
Oracle VM VirtualBox 5.0
Oracle VM Server for x86 3.4
Oracle VM Server for x86 3.3
Oracle VM Server for x86 3.2
Oracle Tuxedo 12.1.1.0
Oracle Switch ES1-24 1.3
Oracle Sun Network 10GE Switch 72p 1.2
Oracle Sun Blade 6000 Ethernet Switched NEM 24P 10GE 1.2
Oracle Solaris 10
Oracle Primavera P6 Enterprise Project Portfolio Management 8.4
Oracle Primavera P6 Enterprise Project Portfolio Management 8.3
Oracle Primavera P6 Enterprise Project Portfolio Management 16.1
Oracle Primavera P6 Enterprise Project Portfolio Management 15.2
Oracle Primavera P6 Enterprise Project Portfolio Management 15.1
Oracle PeopleSoft Enterprise PeopleTools 8.55
Oracle PeopleSoft Enterprise PeopleTools 8.54
Oracle PeopleSoft Enterprise PeopleTools 8.53
Oracle OSS Support Tools Oracle Explorer 10
Oracle JD Edwards EnterpriseOne Tools 9.2.0.5
Oracle Exalogic Infrastructure 2.0
Oracle Exalogic Infrastructure 1.0
Oracle Ethernet Switch 40G 10G 72 2.0
Oracle Ethernet Switch 40G 10G 64 2.0
Oracle Enterprise Session Border Controller Ecz7.3m2p2
Oracle Enterprise Manager Ops Center 12.3.2
Oracle Enterprise Manager Ops Center 12.2.2
Oracle Enterprise Manager Ops Center 12.1.4
Oracle Enterprise Linux 6.2
Oracle Enterprise Linux 6
Oracle Enterprise Linux 5
Oracle Communications Network Charging and Control 5.0.2.0.0
Oracle Communications Network Charging and Control 5.0.1.0.0
Oracle Communications Network Charging and Control 5.0.0.2.0
Oracle Communications Network Charging and Control 5.0.0.1.0
Oracle Communications Network Charging and Control 4.4.1.5.0
OpenSSL Project OpenSSL 1.0.2
OpenSSL Project OpenSSL 1.0.2e
OpenSSL Project OpenSSL 1.0.2d
OpenSSL Project OpenSSL 1.0.2c
OpenSSL Project OpenSSL 1.0.2b
OpenSSL Project OpenSSL 1.0.2a
OpenSSL Project OpenSSL 1.0.1q
OpenSSL Project OpenSSL 1.0.1p
OpenSSL Project OpenSSL 1.0.1o
OpenSSL Project OpenSSL 1.0.1n
OpenSSL Project OpenSSL 1.0.1m
OpenSSL Project OpenSSL 1.0.1l
OpenSSL Project OpenSSL 1.0.1k
OpenSSL Project OpenSSL 1.0.1j
OpenSSL Project OpenSSL 1.0.1i
OpenSSL Project OpenSSL 1.0.1h
OpenSSL Project OpenSSL 1.0.1g
OpenSSL Project OpenSSL 1.0.1f
OpenSSL Project OpenSSL 1.0.1e
OpenSSL Project OpenSSL 1.0.1d
OpenSSL Project OpenSSL 1.0.1c
OpenSSL Project OpenSSL 1.0.1b
OpenSSL Project OpenSSL 1.0.1a
OpenSSL Project OpenSSL 1.0.1
McAfee Email Gateway 7.6.4
McAfee Email Gateway 7.6.3
McAfee Email Gateway 7.6.2
McAfee Email Gateway 7.6.3.2
McAfee Email Gateway 7.6.3.1
McAfee Email Gateway 7.6.1
IBM Watson Explorer Foundational Components 9.0.0.6
IBM Watson Explorer Foundational Components 9.0.0.0
IBM Watson Explorer Foundational Components 10.0.0.2
IBM Watson Explorer Foundational Components 10.0.0.0
IBM Vios 2.2.3
IBM Vios 2.2
IBM Tivoli Provisioning Manager for OS Deployment 5.1 .3
IBM Tivoli Provisioning Manager for OS Deployment 5.1
IBM Tivoli Provisioning Manager for OS Deployment 7.1.1.19
IBM Tivoli Provisioning Manager for OS Deployment 7.1.1
IBM Tivoli Provisioning Manager for OS Deployment 5.1.0.2
IBM Tivoli Provisioning Manager for Images System x Edition 7.1.1.0
IBM Tivoli Provisioning Manager for Images 7.1.1.19
IBM Tivoli Provisioning Manager for Images 7.1.1.0
IBM Tivoli Netcool Reporter 2.2
IBM SmartCloud Entry 3.2 Appliance fix pack 1
IBM SmartCloud Entry 3.2
IBM SmartCloud Entry 3.1 Appliance fix pack 1
IBM SmartCloud Entry 3.1
IBM SmartCloud Entry 3.2 Appliance fixpac
IBM SmartCloud Entry 3.1 Appliance fixpac
IBM Security Network Protection 5.3.2
IBM Security Network Protection 5.3.1
IBM Security Identity Manager Virtual Appliance 7.0.1.0
IBM Security Identity Manager Virtual Appliance 7.0.0.3
IBM Security Identity Manager Virtual Appliance 7.0.0.2
IBM Security Identity Manager Virtual Appliance 7.0.0.1
IBM Security Identity Manager Virtual Appliance 7.0.0.0
IBM Security Identity Governance and Intelligence 5.2.1
IBM Security Guardium 10.0
IBM SDK for Node.js 1.2.0.9
IBM SDK for Node.js 1.2.0.8
IBM SDK for Node.js 1.2.0.4
IBM SDK for Node.js 1.2.0.3
IBM SDK for Node.js 1.2.0.2
IBM SDK for Node.js 1.1.0.9
IBM SDK for Node.js 1.1.0.7
IBM SDK for Node.js 1.1.0.6
IBM SDK for Node.js 1.1.0.5
IBM SDK for Node.js 1.1.0.3
IBM SDK for Node.js 1.1.0.2
IBM SDK for Node.js 1.1.0.19
IBM SDK for Node.js 1.1.0.18
IBM SDK for Node.js 1.1.0.15
IBM SDK for Node.js 1.1.0.14
IBM SDK for Node.js 1.1.0.13
IBM SDK for Node.js 1.1.0.12
IBM Real-time Compression Appliance 4.1.2
IBM Rational Developer for i 9.1.1
IBM Rational Developer for i 9.5.0.2
IBM Rational Developer for i 9.5.0.1
IBM Rational Developer for i 9.5
IBM Rational Developer for i 9.1.1.1
IBM Rational Developer for i 9.1
IBM Rational Developer for AIX and Linux 9.1.1
IBM Rational Developer for AIX and Linux 9.1.1.2
IBM Rational Developer for AIX and Linux 9.1.1.1
IBM Rational Developer for AIX and Linux 9.1
IBM Rational Application Developer for WebSphere Software 9.5
IBM Rational Application Developer for WebSphere Software 9.1
IBM PureApplication System 2.2.0.0
IBM PureApplication System 2.1
IBM PureApplication System 2.0
IBM Proventia Network Enterprise Scanner 2.3
IBM PowerKVM 2.1.1 Build 65.6
IBM PowerKVM 2.1.1 Build 65.5
IBM PowerKVM 2.1.1 Build 65.4
IBM PowerKVM 2.1.1 build 57
IBM PowerKVM 3.1 Build 3
IBM PowerKVM 3.1 Build 2
IBM PowerKVM 3.1
IBM PowerKVM 2.1.1 Build 65.1
IBM PowerKVM 2.1.1 build 58
IBM PowerKVM 2.1
IBM Power HMC 8.4.0.0
IBM Power HMC 8.3.0.0
IBM Power HMC 8.2.0.0
IBM Power HMC 8.1.0.0
IBM Power HMC 7.9.0.0
IBM Power HMC 7.3.0.0
IBM Netezza Firmware Diagnostics Tools 4.3.1.1
IBM MQ Light Client Module for Node.js 1.0.2014091001
IBM MQ Light Client Module for Node.js 1.0.2014090801
IBM MQ Light Client Module for Node.js 1.0.2014090800
IBM MQ Light Client Module for Node.js 1.0.2014091000-red
IBM Initiate Master Data Service Provider Hub 9.7
IBM Initiate Master Data Service Provider Hub 9.5
IBM Initiate Master Data Service 9.7
IBM Initiate Master Data Service 9.5
IBM Initiate Master Data Service 10.1
IBM Initiate Master Data Service 10.0
IBM InfoSphere Master Data Management Standard/Advanced Edition 11.5
IBM InfoSphere Master Data Management Standard/Advanced Edition 11.4
IBM InfoSphere Master Data Management Standard/Advanced Edition 11.3
IBM InfoSphere Master Data Management Standard/Advanced Edition 11.0
IBM InfoSphere Master Data Management Provider Hub 10.0
IBM InfoSphere Data Explorer 8.2-4
IBM InfoSphere Data Explorer 8.2
IBM Image Construction and Composition Tool 2.3.2.0
IBM Image Construction and Composition Tool 2.3.1.0
IBM i 7.2
IBM i 7.1
IBM Flex System Manager 1.3.2 0
IBM Flex System Manager 1.2.1
IBM Flex System Manager 1.2
IBM Flex System Manager 1.1
IBM Flex System Manager 1.3.4.0
IBM Flex System Manager 1.3.3.0
IBM Flex System Manager 1.3.1
IBM Flex System Manager 1.3.0.1
IBM Flex System Manager 1.3.0
IBM Flex System Chassis Management Module 2PET
IBM DataPower Gateways 7.0
IBM DataPower Gateways 7.5.0.1
IBM DataPower Gateways 7.5.0.0
IBM DataPower Gateways 7.2.0.5
IBM DataPower Gateways 7.2.0.4
IBM DataPower Gateways 7.2.0.3
IBM DataPower Gateways 7.2.0.2
IBM DataPower Gateways 7.2.0.1
IBM DataPower Gateways 7.2.0.0
IBM DataPower Gateways 7.1.0.9
IBM DataPower Gateways 7.1.0.8
IBM DataPower Gateways 7.1.0.7
IBM DataPower Gateways 7.1.0.6
IBM DataPower Gateways 7.1.0.5
IBM DataPower Gateways 7.1
IBM DataPower Gateways 7.0.0.9
IBM DataPower Gateways 7.0.0.8
IBM DataPower Gateways 7.0.0.12
IBM DataPower Gateways 7.0.0.11
IBM DataPower Gateways 7.0.0.10
IBM Cognos TM1 10.2.2
IBM Cognos TM1 10.2
IBM Cognos TM1 10.1.0
IBM Cognos Insight 10.2.2
IBM Cognos Insight 10.2.1
IBM Cognos Insight 10.2
IBM Cloud Manager with Openstack 4.3
IBM Cloud Manager with Openstack 4.2
IBM Cloud Manager with Openstack 4.1
IBM Cloud Manager with Openstack 4.3.0.6 Interim Fix1
IBM Cloud Manager with Openstack 4.3.0.6
IBM Cloud Manager with Openstack 4.3.0.4 interim Fix
IBM Cloud Manager with Openstack 4.3.0.4
IBM Cloud Manager with Openstack 4.3.0.3
IBM Cloud Manager with Openstack 4.3.0.2
IBM Cloud Manager with Openstack 4.3.0.1
IBM Cloud Manager with Openstack 4.2.0.3 Interix Fix
IBM Cloud Manager with Openstack 4.2.0.3 Interix Fix
IBM Cloud Manager with Openstack 4.2.0.3 Interim Fix
IBM Cloud Manager with Openstack 4.2.0.3
IBM Cloud Manager with Openstack 4.2.0.2
IBM Cloud Manager with Openstack 4.2.0.1
IBM Cloud Manager with Openstack 4.1.0.5 Interim Fix
IBM Cloud Manager with Openstack 4.1.0.5 Interim Fix
IBM Cloud Manager with Openstack 4.1.0.5
IBM Cloud Manager with Openstack 4.1.0.4.2
IBM Cloud Manager with Openstack 4.1.0.4
IBM Cloud Manager with Openstack 4.1.0.3
IBM Cloud Manager with Openstack 4.1.0.2
IBM Cloud Manager with Openstack 4.1.0.1
IBM Cisco Directors and Switches with NX-OS 7.0
IBM Cisco Directors and Switches with NX-OS 6.0
IBM Cisco Directors and Switches with NX-OS 5.0
IBM Business Process Manager Standard 8.5.6
IBM Business Process Manager Standard 8.5.5
IBM Business Process Manager Standard 8.5.7
IBM Business Process Manager Express 8.5.6
IBM Business Process Manager Express 8.5.5
IBM Business Process Manager Express 8.5.7
IBM Aix 7.2
IBM AIX 7.1
IBM AIX 6.1
IBM AIX 5.3
Gentoo Linux
FreeBSD Freebsd 9.3-RELEASE-p9
FreeBSD FreeBSD 9.3-RELEASE-p6
FreeBSD FreeBSD 9.3-RELEASE-p5
FreeBSD Freebsd 9.3-RELEASE-p35
FreeBSD Freebsd 9.3-RELEASE-p34
FreeBSD Freebsd 9.3-RELEASE-p33
FreeBSD Freebsd 9.3-RELEASE-p31
FreeBSD FreeBSD 9.3-RELEASE-p3
FreeBSD Freebsd 9.3-RELEASE-p29
FreeBSD Freebsd 9.3-RELEASE-p25
FreeBSD Freebsd 9.3-RELEASE-p24
FreeBSD Freebsd 9.3-RELEASE-p22
FreeBSD Freebsd 9.3-RELEASE-p21
FreeBSD FreeBSD 9.3-RELEASE-p2
FreeBSD Freebsd 9.3-RELEASE-p13
FreeBSD Freebsd 9.3-RELEASE-p10
FreeBSD FreeBSD 9.3-RELEASE-p1
FreeBSD FreeBSD 9.3
FreeBSD Freebsd 10.2-RELEASE-p9
FreeBSD Freebsd 10.2-RELEASE-p8
FreeBSD Freebsd 10.2-RELEASE-p6
FreeBSD Freebsd 10.2-RELEASE-p11
FreeBSD Freebsd 10.2-RELEASE-p10
FreeBSD Freebsd 10.2
FreeBSD Freebsd 10.1-RELEASE-p9
FreeBSD Freebsd 10.1-RELEASE-p6
FreeBSD Freebsd 10.1-RELEASE-p5
FreeBSD Freebsd 10.1-RELEASE-p28
FreeBSD Freebsd 10.1-RELEASE-p27
FreeBSD Freebsd 10.1-RELEASE-p26
FreeBSD Freebsd 10.1-RELEASE-p25
FreeBSD Freebsd 10.1-RELEASE-p23
FreeBSD Freebsd 10.1-RELEASE-p19
FreeBSD Freebsd 10.1-RELEASE-p17
FreeBSD Freebsd 10.1-RELEASE-p16
FreeBSD FreeBSD 10.1-RELEASE-p1
FreeBSD FreeBSD 10.1
FreeBSD Freebsd 10.0
Extremenetworks Wireless AP 3965 10.1.1
Extremenetworks Wireless AP 3935 10.1.1
Extremenetworks Wireless AP 3865 10.1.1
Extremenetworks Wireless AP 3825 10.1.1
Extremenetworks Wireless AP 3805 10.1.1
Extremenetworks Wireless AP 3801 10.1.1
Extremenetworks Wireless AP 3715 10.1.1
Extremenetworks ExtremeXOS 0
Cisco WebEx Messenger Service 0
Cisco WebEx Meetings Server 2.5
Cisco WebEx Meetings Server 2.0
Cisco WebEx Meetings Server 1.5.1.6
Cisco WebEx Meetings Server 1.5.1.131
Cisco WebEx Meetings Server 1.5
Cisco WebEx Meetings Server 1.1
Cisco WebEx Meetings Server 1.0
Cisco Videoscape Control Suite Foundation 0
Cisco Unity Connection (UC) 0
Cisco Unified Intelligent Contact Management Enterprise 0
Cisco Unified Contact Center Express 0
Cisco Unified Contact Center Enterprise 0
Cisco Unified Communications Manager Session Management Edition (SME) 0
Cisco Unified Communications Manager (UCM) 0
Cisco Unified Attendant Console Standard 0
Cisco Unified Attendant Console Premium Edition 0
Cisco Unified Attendant Console Enterprise Edition 0
Cisco Unified Attendant Console Department Edition 0
Cisco Unified Attendant Console Business Edition 0
Cisco Unified Attendant Console Advanced 0
Cisco Unified 8945 IP Phone 0
Cisco TelePresence Video Communication Server (VCS) 0
Cisco TelePresence TX 9000 Series 0
Cisco TelePresence System 500-37 0
Cisco TelePresence System 500-32 0
Cisco TelePresence System 3000 Series 0
Cisco TelePresence System 1300 0
Cisco TelePresence System 1100 0
Cisco TelePresence System 1000 0
Cisco TelePresence Server on Virtual Machine 0
Cisco TelePresence Server on Multiparty Media 320 0
Cisco TelePresence Server on Multiparty Media 310 0
Cisco TelePresence Server 8710 7010
Cisco TelePresence Conductor 0
Cisco TelePresence 1310 0
Cisco Registered Envelope Service (CRES) 0
Cisco Proactive Network Operations Center 0
Cisco Prime Performance Manager 0
Cisco Prime Optical for SPs 0
Cisco Prime License Manager 0
Cisco Prime Collaboration Provisioning 0
Cisco Prime Collaboration Deployment 0
Cisco ONS 15454 Series Multiservice Provisioning Platforms 0
Cisco NX-OS Nexus 9000 0
Cisco NX-OS Nexus 5000 0
Cisco Nexus 7000 0
Cisco Nexus 6000 0
Cisco Nexus 3X00 0
Cisco Nexus 3000 0
Cisco Mobility Services Engine 0
Cisco MediaSense 0
Cisco MDS 9000 Series Multilayer Switches 0
Cisco Jabber for Windows 0
Cisco Intrusion Prevention System Solutions (IPS) 0
Cisco IM and Presence Service (CUPS) 0
Cisco Expressway series 0
Cisco Emergency Responder
Cisco Email Security Appliance 0
Cisco Edge 300 Digital Media Player 0
Cisco Computer Telephony Integration Object Server (CTIOS) 0
Cisco Cloupia Unified Infrastructure Controller 0
Cisco Cisco Unified Computing System B-Series (Blade) Servers 0
Cisco Cisco Unified 7800 series IP Phones 0
Cisco ASA Next-Generation Firewall Services 0
Cisco AnyRes Live (CAL) 0
Cisco Agent Desktop
Cisco 8800 Series IP Phones 0
CentOS CentOS 7
CentOS CentOS 6
CentOS CentOS 5
Not Vulnerable: Oracle VM VirtualBox 5.0.16
Oracle Solaris 11.3 SRU 6.5
OpenSSL Project OpenSSL 1.0.2g
OpenSSL Project OpenSSL 1.0.2f
OpenSSL Project OpenSSL 1.0.1s
OpenSSL Project OpenSSL 1.0.1r
McAfee Email Gateway 7.6.404
IBM Tivoli Provisioning Manager for OS Deployment 7.1.1.20 build 280.6
IBM Tivoli Provisioning Manager for OS Deployment 5.1.1 build 051.07
IBM Tivoli Provisioning Manager for Images 7.1.1.20 build 280.6
IBM SmartCloud Entry 3.2 Appliance fixpac
IBM SmartCloud Entry 3.1 Appliance fixpac
IBM SDK for Node.js 1.2.0.10
IBM SDK for Node.js 1.1.0.20
IBM Real-time Compression Appliance 4.1.2.17
IBM PureApplication System 2.2.1
IBM PureApplication System 2.1.2.2
IBM PureApplication System 2.0.0.1 IF 8
IBM PowerKVM 2.1.1 SP3
IBM PowerKVM 2.1.1 Build 65.7
IBM PowerKVM 3.1 SP1
IBM Netezza Firmware Diagnostics Tools 4.3.1.2
IBM DataPower Gateways 7.2.0.6
IBM DataPower Gateways 7.1.0.10
IBM DataPower Gateways 7.0.0.13
IBM Cognos TM1 10.2.2 Fix Pack 6
IBM Cognos TM1 10.2.0.2 Interim Fix
IBM Cognos TM1 10.1.1.2 Interim Fix
IBM Cognos Insight 10.2.2 FP 6
IBM Cognos Insight 10.2.1 FP 2 IF 6
IBM Cognos Insight 10.2 FP 1 IF 6
IBM Cloud Manager with Openstack 4.3.0.6 Interim Fix1
IBM Cloud Manager with Openstack 4.2.0.3 interim fix
IBM Cloud Manager with Openstack 4.1.0.5 interim fix
FreeBSD FreeBSD 9.3-STABLE
FreeBSD Freebsd 9.3-RELEASE-p36
FreeBSD Freebsd 10.2-STABLE
FreeBSD Freebsd 10.2-RELEASE-p12
FreeBSD Freebsd 10.1-RELEASE-p29
Extremenetworks Wireless AP 3965 10.11.1
Extremenetworks Wireless AP 3965 10.1.4
Extremenetworks Wireless AP 3935 10.11.1
Extremenetworks Wireless AP 3935 10.1.4
Extremenetworks Wireless AP 3865 10.11.1
Extremenetworks Wireless AP 3865 10.1.4
Extremenetworks Wireless AP 3825 10.11.1
Extremenetworks Wireless AP 3825 10.1.4
Extremenetworks Wireless AP 3805 10.11.1
Extremenetworks Wireless AP 3805 10.1.4
Extremenetworks Wireless AP 3801 10.11.1
Extremenetworks Wireless AP 3801 10.1.4
Extremenetworks Wireless AP 3715 10.11.1
Extremenetworks Wireless AP 3715 10.1.4


 

Privacy Statement
Copyright 2010, SecurityFocus