Detections
Analytics
OpenSSL < 0.9.8u Multiple Vulnerabilities
medium Nessus Plugin ID 58564
Language:
Synopsis
The remote host may be affected by multiple vulnerabilities.Description
According to its banner, the remote web server uses an OpenSSL version prior to 0.9.8u. As such, it is reportedly affected by the following vulnerabilities :- An error exists in the function 'mime_hdr_cmp' that could allow a NULL pointer to be dereferenced when parsing certain MIME headers. (CVE-2006-7250)
- The fix for CVE-2011-4619 was not complete.
- An error exists in the Cryptographic Message Syntax (CMS) and PKCS #7 implementation such that data can be decrypted using Million Message Attack (MMA) adaptive chosen cipher text attack. (CVE-2012-0884)
- An error exists in the function 'mime_param_cmp' in the file 'crypto/asn1/asn_mime.c' that can allow a NULL pointer to be dereferenced when handling certain S/MIME content. (CVE-2012-1165)
Note that SSL/TLS applications are not necessarily affected, but those using CMS, PKCS #7 and S/MIME decryption operations are.
Solution
Upgrade to OpenSSL 0.9.8u or later.See Also
https://www.openssl.org/news/changelog.html
https://marc.info/?l=openssl-dev&m=115685408414194&w=2
https://www.openssl.org/news/secadv/20120312.txt
https://www.openwall.com/lists/oss-security/2012/03/13/2
Plugin Details
Severity: Medium
ID: 58564
File Name: openssl_0_9_8u.nasl
Version: 1.13
Type: combined
Agent: windows, macosx, unix
Family: Web Servers
Published: 4/2/2012
Updated: 8/22/2023
Supported Sensors: Nessus Agent
Risk Information
VPR
Risk Factor: Low
Score: 3.6
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS Score Source: CVE-2012-0884
Vulnerability Information
CPE: cpe:/a:openssl:openssl
Required KB Items: installed_sw/OpenSSL
Exploit Ease: No known exploits are available
Patch Publication Date: 2/23/2012
Vulnerability Publication Date: 8/30/2006
Reference Information
CVE: CVE-2006-7250, CVE-2011-4619, CVE-2012-0884, CVE-2012-1165