Network Security Services 'ssl_Do1stHandshake()' Function Information Disclosure Vulnerability

Bugtraq ID: 64944
Class: Design Error
CVE: CVE-2013-1740
Remote: Yes
Local: No
Published: Jan 09 2014 12:00AM
Updated: Jul 29 2016 05:00PM
Credit: The vendor reported this issue.
Vulnerable: Ubuntu Ubuntu Linux 13.10
Ubuntu Ubuntu Linux 12.10
Ubuntu Ubuntu Linux 12.04 LTS
Ubuntu Ubuntu Linux 10.04 LTS
Slackware Slackware Linux 14.1
Slackware Slackware Linux 14.0
S.u.S.E. openSUSE 13.1
S.u.S.E. openSUSE 12.3
S.u.S.E. openSUSE 11.4
Redhat Enterprise Linux Workstation Optional 6
Redhat Enterprise Linux Workstation 6
Redhat Enterprise Linux Server Optional 6
Redhat Enterprise Linux Server 6
Redhat Enterprise Linux HPC Node Optional 6
Redhat Enterprise Linux HPC Node 6
Redhat Enterprise Linux Desktop Workstation 5 client
Redhat Enterprise Linux Desktop Optional 6
Redhat Enterprise Linux Desktop 6
Redhat Enterprise Linux Desktop 5 client
Redhat Enterprise Linux 5 Server
Oracle VM Server for x86 3.4
Oracle VM Server for x86 3.3
Oracle VM Server for x86 3.2
Oracle Solaris 9
Oracle Solaris 8
Oracle Solaris 10
Oracle Enterprise Manager Ops Center 12.1.0.1
Oracle Enterprise Manager Ops Center 12.1
Oracle Enterprise Manager Ops Center 11.1.3
Oracle Enterprise Manager Ops Center 11.1
Oracle Enterprise Linux 6.2
Oracle Enterprise Linux 6
Oracle Enterprise Linux 5
Mozilla Network Security Services (NSS) 3.15.3
Mozilla Network Security Services (NSS) 3.15.2
Mozilla Network Security Services (NSS) 3.15.1
Moonchild Productions Pale Moon 24.1.2
Moonchild Productions Pale Moon 24.1.1
Moonchild Productions Pale Moon 24.1
Moonchild Productions Pale Moon 24.2.2
Moonchild Productions Pale Moon 24.2.0
Moonchild Productions Pale Moon 24.0
Mandriva Business Server 1 X86 64
Mandriva Business Server 1
MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
IBM TSSC 7.3.15
IBM TSSC 7.3
IBM TSSC 7.0
IBM Security Network Protection (XGS) 5100 5.1.2 1
IBM Security Network Protection (XGS) 5100 5.1.2
IBM Security Network Protection (XGS) 5100 5.1.1
IBM Security Network Protection (XGS) 5100 5.2
IBM Security Network Protection (XGS) 5100 5.1
IBM Security Network Protection (XGS) 4100 5.1.2 1
IBM Security Network Protection (XGS) 4100 5.1.2
IBM Security Network Protection (XGS) 4100 5.1.1
IBM Security Network Protection (XGS) 4100 5.2
IBM Security Network Protection (XGS) 4100 5.1
IBM Security Network Protection (XGS) 3100 5.1.2 1
IBM Security Network Protection (XGS) 3100 5.1.2
IBM Security Network Protection (XGS) 3100 5.1.1
IBM Security Network Protection (XGS) 3100 5.2
IBM Security Network Protection (XGS) 3100 5.1
IBM FlashSystem 840 9848G-AC0
IBM FlashSystem 840 9848-AE1
IBM FlashSystem 840 9846G-AC0
IBM FlashSystem 840 9846-AE1
IBM FlashSystem 840 9843-AE1
IBM FlashSystem 840 9840-AE1
CentOS CentOS 6
CentOS CentOS 5
Not Vulnerable: Oracle Enterprise Manager Ops Center 12.3
Oracle Enterprise Manager Ops Center 12.2.1
Oracle Enterprise Manager Ops Center 12.2
Oracle Enterprise Manager Ops Center 12.1.4
Mozilla Network Security Services (NSS) 3.15.4
Moonchild Productions Pale Moon 24.3.0
IBM TSSC 7.3.16


 

Privacy Statement
Copyright 2010, SecurityFocus