|
|
OpenSSL ASN.1 Large Recursion Remote Denial Of Service Vulnerability
|
Bugtraq ID:
|
8970
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CAN-2003-0851
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Nov 04 2003 12:00AM
|
|
Updated:
|
Nov 04 2003 12:00AM
|
|
Credit:
|
Discovery credited to Novell.
|
|
Vulnerable:
|
SGI IRIX 6.5.21 m
SGI IRIX 6.5.21 f
SGI IRIX 6.5.20 m
SGI IRIX 6.5.20 f
SGI IRIX 6.5.19 m
SGI IRIX 6.5.19 f
RedHat Linux 8.0
RedHat Linux 7.3
RedHat Linux 7.2
Opera Software Opera Web Browser 7.22
Opera Software Opera Web Browser 7.21
Opera Software Opera Web Browser 7.20
OpenSSL Project OpenSSL 0.9.7 b
+
OpenPKG OpenPKG 1.3
OpenSSL Project OpenSSL 0.9.7 a
+
Conectiva Linux 9.0
+
OpenPKG OpenPKG Current
OpenSSL Project OpenSSL 0.9.7
+
Caldera OpenUnix 8.0
+
Caldera UnixWare 7.1.3
+
Caldera UnixWare 7.1.1
+
FreeBSD FreeBSD 5.0
+
OpenBSD OpenBSD 3.2
+
OpenPKG OpenPKG 1.2
OpenSSL Project OpenSSL 0.9.6 k
+
Blue Coat Systems CacheOS CA/SA 4.1.10
+
Blue Coat Systems Security Gateway OS 3.1
+
Blue Coat Systems Security Gateway OS 3.0
+
Blue Coat Systems Security Gateway OS 2.1.5001 SP1
+
Blue Coat Systems Security Gateway OS 2.1.9
+
Blue Coat Systems Security Gateway OS 2.0
+
Slackware Linux 8.1
OpenSSL Project OpenSSL 0.9.6 j
OpenSSL Project OpenSSL 0.9.6 i
+
HP Apache-Based Web Server 1.3.27 .01
+
HP Apache-Based Web Server 1.3.27 .00
+
HP HP-UX Apache-Based Web Server 1.0.1 .01
+
HP HP-UX Apache-Based Web Server 1.0 .07.01
+
HP HP-UX Apache-Based Web Server 1.0 .06.02
+
HP HP-UX Apache-Based Web Server 1.0 .06.01
+
HP HP-UX Apache-Based Web Server 1.0 .05.01
+
HP HP-UX Apache-Based Web Server 1.0 .04.01
+
HP HP-UX Apache-Based Web Server 1.0 .03.01
+
HP HP-UX Apache-Based Web Server 1.0 .02.01
+
HP HP-UX Apache-Based Web Server 1.0 .01
+
MandrakeSoft Corporate Server 2.1 x86_64
+
MandrakeSoft Corporate Server 2.1
+
MandrakeSoft Linux Mandrake 9.1 ppc
+
MandrakeSoft Linux Mandrake 9.1
+
MandrakeSoft Linux Mandrake 9.0
+
S.u.S.E. Linux Personal 8.2
OpenSSL Project OpenSSL 0.9.6 h
OpenSSL Project OpenSSL 0.9.6 g
+
Conectiva Linux Enterprise Edition 1.0
+
FreeBSD FreeBSD 4.7 -RELEASE
+
FreeBSD FreeBSD 4.7
+
HP Apache-Based Web Server 2.0.43 .04
+
HP Apache-Based Web Server 2.0.43 .00
+
HP Webmin-Based Admin 1.0 .01
+
Immunix Immunix OS 7+
+
NetBSD NetBSD 1.6
+
OpenPKG OpenPKG 1.1
OpenSSL Project OpenSSL 0.9.6 f
OpenSSL Project OpenSSL 0.9.6 e
+
FreeBSD FreeBSD 4.6 -RELEASE
+
FreeBSD FreeBSD 4.6
OpenSSL Project OpenSSL 0.9.6 d
+
Slackware Linux 8.1
OpenSSL Project OpenSSL 0.9.6 c
+
Conectiva Linux 8.0
+
Debian Linux 3.0 sparc
+
Debian Linux 3.0 s/390
+
Debian Linux 3.0 ppc
+
Debian Linux 3.0 mipsel
+
Debian Linux 3.0 mips
+
Debian Linux 3.0 m68k
+
Debian Linux 3.0 ia-64
+
Debian Linux 3.0 ia-32
+
Debian Linux 3.0 hppa
+
Debian Linux 3.0 arm
+
Debian Linux 3.0 alpha
+
Debian Linux 3.0
+
MandrakeSoft Linux Mandrake 8.2
+
S.u.S.E. Linux 8.0 i386
+
S.u.S.E. Linux 8.0
OpenSSL Project OpenSSL 0.9.6 b
+
MandrakeSoft Linux Mandrake 8.1 ia64
+
MandrakeSoft Linux Mandrake 8.1
+
OpenBSD OpenBSD 3.1
+
OpenBSD OpenBSD 3.0
+
RedHat Enterprise Linux AS 2.1 IA64
+
RedHat Enterprise Linux AS 2.1
+
RedHat Enterprise Linux ES 2.1 IA64
+
RedHat Enterprise Linux ES 2.1
+
RedHat Enterprise Linux WS 2.1 IA64
+
RedHat Enterprise Linux WS 2.1
+
RedHat Linux 7.3 i386
+
RedHat Linux 7.3
+
RedHat Linux 7.2 ia64
+
RedHat Linux 7.2 i686
+
RedHat Linux 7.2 i386
+
RedHat Linux 7.2
+
RedHat Linux Advanced Work Station 2.1
+
S.u.S.E. Linux 7.3 sparc
+
S.u.S.E. Linux 7.3 ppc
+
S.u.S.E. Linux 7.3 i386
+
S.u.S.E. Linux Connectivity Server
+
S.u.S.E. Linux Database Server 0
+
S.u.S.E. Linux Enterprise Server 7
+
S.u.S.E. Linux Firewall on CD
+
S.u.S.E. Office Server
+
S.u.S.E. SuSE eMail Server III
+
Sun Linux 5.0.7
+
Sun Linux 5.0.6
+
Sun Linux 5.0.5
+
Sun Linux 5.0.3
+
Sun Linux 5.0
OpenSSL Project OpenSSL 0.9.6 a
+
Conectiva Linux 7.0
+
NetBSD NetBSD 1.5.3
+
NetBSD NetBSD 1.5.2
+
NetBSD NetBSD 1.5.1
+
NetBSD NetBSD 1.5
+
S.u.S.E. Linux 7.2 i386
+
S.u.S.E. Linux 7.1 sparc
+
S.u.S.E. Linux 7.1 ppc
+
S.u.S.E. Linux 7.1 alpha
+
S.u.S.E. Linux 7.1
OpenSSL Project OpenSSL 0.9.6
+
Caldera OpenLinux Server 3.1.1
+
Caldera OpenLinux Server 3.1
+
Caldera OpenLinux Workstation 3.1.1
+
Caldera OpenLinux Workstation 3.1
+
Conectiva Linux 6.0
+
EnGarde Secure Linux 1.0.1
+
HP Secure OS software for Linux 1.0
+
MandrakeSoft Linux Mandrake 8.0 ppc
+
MandrakeSoft Linux Mandrake 8.0
+
NetBSD NetBSD 1.6 beta
+
NetBSD NetBSD 1.6
+
NetBSD NetBSD 1.5.3
+
NetBSD NetBSD 1.5.2
+
NetBSD NetBSD 1.5.1
+
NetBSD NetBSD 1.5
+
OpenBSD OpenBSD 2.9
+
OpenPKG OpenPKG 1.0
+
RedHat Linux 7.3 i386
+
RedHat Linux 7.3
+
RedHat Linux 7.2 i386
+
RedHat Linux 7.2 alpha
+
RedHat Linux 7.1 i386
+
RedHat Linux 7.1 alpha
+
RedHat Linux 7.0 sparc
+
RedHat Linux 7.0 i386
+
RedHat Linux 7.0 alpha
+
Trustix Secure Linux 1.5
+
Trustix Secure Linux 1.2
+
Trustix Secure Linux 1.1
NetBSD NetBSD 1.6.1
NetBSD NetBSD 1.6
Cisco PIX Firewall 6.3 (1)
Cisco PIX Firewall 6.2.2 .111
Cisco PIX Firewall 6.2.2
Cisco PIX Firewall 6.2.1
Cisco PIX Firewall 6.2 (3)
Cisco PIX Firewall 6.2 (2)
Cisco PIX Firewall 6.2 (1)
Cisco PIX Firewall 6.2
Cisco PIX Firewall 6.1.4
Cisco PIX Firewall 6.1.3
Cisco PIX Firewall 6.1 (5)
Cisco PIX Firewall 6.1 (4)
Cisco PIX Firewall 6.1 (3)
Cisco PIX Firewall 6.1 (2)
Cisco PIX Firewall 6.1 (1)
Cisco PIX Firewall 6.1
+
Cisco PIX Firewall 515
+
Cisco PIX Firewall 520
Cisco PIX Firewall 6.0.4
Cisco PIX Firewall 6.0.3
Cisco PIX Firewall 6.0 (4.101)
Cisco PIX Firewall 6.0 (4)
Cisco PIX Firewall 6.0 (2)
Cisco PIX Firewall 6.0 (1)
Cisco PIX Firewall 6.0
+
Cisco PIX Firewall 515
+
Cisco PIX Firewall 520
Cisco IOS 12.2SY
Cisco IOS 12.2SX
Cisco IOS 12.1(11b)E
Cisco IOS 12.1(11)E
Cisco Firewall Services Module 2.1 (0.208)
Cisco CSS11000 Content Services Switch
|
|
|
|
Not Vulnerable:
|
Opera Software Opera Web Browser 7.23
OpenSSL Project OpenSSL 0.9.7 c
+
OpenPKG OpenPKG 2.0
+
Slackware Linux 9.1
+
Slackware Linux 9.0
+
Slackware Linux -current
OpenSSL Project OpenSSL 0.9.6 l
Blue Coat Systems Security Gateway OS 3.1.2
Blue Coat Systems Security Gateway OS 2.1.10
Blue Coat Systems CacheOS CA/SA 4.1.12
|
|
|
