SUSE-SA:2003:043: openssl

Critical Nessus Plugin ID 13811


The remote host is missing a vendor-supplied security patch


The remote host is missing the patch for the advisory SUSE-SA:2003:043 (openssl).

OpenSSL is an implementation of the Secure Socket Layer (SSL v2/3) and Transport Layer Security (TLS v1) protocol.
While checking the openssl implementation with a tool-kit from NISCC several errors were revealed most are ASN.1 encoding issues that causes a remote denial-of-service attack on the server side and possibly lead to remote command execution.

There are two problems with ASN.1 encoding that can be triggered either by special ASN.1 encodings or by special ASN.1 tags.

In debugging mode public key decoding errors can be ignored but also lead to a crash of the verify code if an invalid public key was received from the client.

A mistake in the SSL/TLS protocol handling will make the server accept client certificates even if they are not requested. This bug makes it possible to exploit the bugs mentioned above even if client authentication is disabled.

There is not other solution known to this problem then updating to the current version from our FTP servers.

To make this update effective, restart all servers using openssl please.

Please download the update package for your distribution and verify its integrity by the methods listed in section 3) of this announcement.
Then, install the package using the command 'rpm -Fhv file.rpm' to apply the update.


Plugin Details

Severity: Critical

ID: 13811

File Name: suse_SA_2003_043.nasl

Version: $Revision: 1.12 $

Agent: unix

Published: 2004/07/25

Modified: 2012/06/14

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list

Reference Information

CVE: CVE-2003-0543, CVE-2003-0544, CVE-2003-0545

CWE: 119