The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote malicious users to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cisco firewall services module |
||
symantec clientless vpn gateway 4400 5.0 |
||
hp apache-based web server 2.0.43.00 |
||
cisco firewall services module 1.1.3 |
||
cisco firewall services module 1.1.2 |
||
hp aaa server |
||
cisco firewall services module 1.1 (3.005) |
||
hp apache-based web server 2.0.43.04 |
||
cisco firewall services module 2.1 (0.208) |
||
avaya sg203 4.4 |
||
hp hp-ux 11.11 |
||
redhat enterprise linux desktop 3.0 |
||
hp hp-ux 11.23 |
||
cisco ciscoworks common management foundation 2.1 |
||
freebsd freebsd 5.1 |
||
avaya sg208 4.4 |
||
redhat enterprise linux 3.0 |
||
avaya sg200 4.4 |
||
avaya sg5 4.4 |
||
redhat linux 7.2 |
||
cisco ciscoworks common services 2.2 |
||
openbsd openbsd 3.3 |
||
apple mac os x server 10.3.3 |
||
redhat linux 8.0 |
||
redhat linux 7.3 |
||
avaya converged communications server 2.0 |
||
sco openserver 5.0.7 |
||
hp hp-ux 11.00 |
||
avaya sg5 4.2 |
||
avaya sg208 |
||
freebsd freebsd 5.2 |
||
avaya sg200 4.31.29 |
||
freebsd freebsd 4.8 |
||
avaya sg203 4.31.29 |
||
hp hp-ux 8.05 |
||
apple mac os x 10.3.3 |
||
freebsd freebsd 5.2.1 |
||
sco openserver 5.0.6 |
||
avaya sg5 4.3 |
||
freebsd freebsd 4.9 |
||
openbsd openbsd 3.4 |
||
cisco ios 12.1(11)e |
||
cisco ios 12.1(11b)e |
||
cisco ios 12.1(11b)e12 |
||
cisco ios 12.1(11b)e14 |
||
cisco ios 12.1(13)e9 |
||
cisco ios 12.1(19)e1 |
||
cisco ios 12.2(14)sy |
||
cisco ios 12.2(14)sy1 |
||
cisco ios 12.2sy |
||
cisco ios 12.2za |
||
4d webstar 4.0 |
||
4d webstar 5.2 |
||
4d webstar 5.2.1 |
||
4d webstar 5.2.2 |
||
4d webstar 5.2.3 |
||
4d webstar 5.2.4 |
||
4d webstar 5.3 |
||
4d webstar 5.3.1 |
||
avaya intuity audix |
||
avaya intuity audix 5.1.46 |
||
avaya intuity audix s3210 |
||
avaya intuity audix s3400 |
||
avaya vsu 5 |
||
avaya vsu 5x |
||
avaya vsu 100 r2.0.1 |
||
avaya vsu 500 |
||
avaya vsu 2000 r2.0.1 |
||
avaya vsu 5000 r2.0.1 |
||
avaya vsu 7500 r2.0.1 |
||
avaya vsu 10000 r2.0.1 |
||
checkpoint firewall-1 |
||
checkpoint firewall-1 2.0 |
||
checkpoint firewall-1 next generation fp0 |
||
checkpoint firewall-1 next generation fp1 |
||
checkpoint firewall-1 next generation fp2 |
||
checkpoint provider-1 4.1 |
||
checkpoint vpn-1 next generation fp0 |
||
checkpoint vpn-1 next generation fp1 |
||
checkpoint vpn-1 next generation fp2 |
||
checkpoint vpn-1 vsx ng with application intelligence |
||
cisco access registrar |
||
cisco application and content networking software |
||
cisco css secure content accelerator 1.0 |
||
cisco css secure content accelerator 2.0 |
||
cisco css11000 content services switch |
||
cisco okena stormwatch 3.2 |
||
cisco pix firewall 6.2.2 .111 |
||
cisco threat response |
||
cisco webns 6.10 |
||
cisco webns 6.10 b4 |
||
cisco webns 7.1 0.1.02 |
||
cisco webns 7.1 0.2.06 |
||
cisco webns 7.2 0.0.03 |
||
cisco webns 7.10 |
||
cisco webns 7.10 .0.06s |
||
dell bsafe ssl-j 3.0 |
||
dell bsafe ssl-j 3.0.1 |
||
dell bsafe ssl-j 3.1 |
||
forcepoint stonegate 1.5.17 |
||
forcepoint stonegate 1.5.18 |
||
forcepoint stonegate 1.6.2 |
||
forcepoint stonegate 1.6.3 |
||
forcepoint stonegate 1.7 |
||
forcepoint stonegate 1.7.1 |
||
forcepoint stonegate 1.7.2 |
||
forcepoint stonegate 2.0.1 |
||
forcepoint stonegate 2.0.4 |
||
forcepoint stonegate 2.0.5 |
||
forcepoint stonegate 2.0.6 |
||
forcepoint stonegate 2.0.7 |
||
forcepoint stonegate 2.0.8 |
||
forcepoint stonegate 2.0.9 |
||
forcepoint stonegate 2.1 |
||
forcepoint stonegate 2.2 |
||
forcepoint stonegate 2.2.1 |
||
forcepoint stonegate 2.2.4 |
||
hp wbem a.01.05.08 |
||
hp wbem a.02.00.00 |
||
hp wbem a.02.00.01 |
||
litespeedtech litespeed web server 1.0.1 |
||
neoteris instant virtual extranet 3.0 |
||
neoteris instant virtual extranet 3.1 |
||
neoteris instant virtual extranet 3.2 |
||
neoteris instant virtual extranet 3.3 |
||
neoteris instant virtual extranet 3.3.1 |
||
novell edirectory 8.0 |
||
novell edirectory 8.5 |
||
novell edirectory 8.5.12a |
||
novell edirectory 8.5.27 |
||
novell edirectory 8.6.2 |
||
novell edirectory 8.7 |
||
novell edirectory 8.7.1 |
||
novell imanager 1.5 |
||
novell imanager 2.0 |
||
openssl openssl 0.9.6c |
||
openssl openssl 0.9.6d |
||
openssl openssl 0.9.6e |
||
openssl openssl 0.9.6f |
||
openssl openssl 0.9.6g |
||
openssl openssl 0.9.6h |
||
openssl openssl 0.9.6i |
||
openssl openssl 0.9.6j |
||
openssl openssl 0.9.6k |
||
openssl openssl 0.9.7 |
||
openssl openssl 0.9.7a |
||
openssl openssl 0.9.7b |
||
openssl openssl 0.9.7c |
||
redhat openssl 0.9.6-15 |
||
redhat openssl 0.9.6b-3 |
||
redhat openssl 0.9.7a-2 |
||
sgi propack 2.3 |
||
sgi propack 2.4 |
||
sgi propack 3.0 |
||
stonesoft servercluster 2.5 |
||
stonesoft servercluster 2.5.2 |
||
stonesoft stonebeat fullcluster 1 2.0 |
||
stonesoft stonebeat fullcluster 1 3.0 |
||
stonesoft stonebeat fullcluster 2.0 |
||
stonesoft stonebeat fullcluster 2.5 |
||
stonesoft stonebeat fullcluster 3.0 |
||
stonesoft stonebeat securitycluster 2.0 |
||
stonesoft stonebeat securitycluster 2.5 |
||
stonesoft stonebeat webcluster 2.0 |
||
stonesoft stonebeat webcluster 2.5 |
||
tarantella tarantella enterprise 3.20 |
||
tarantella tarantella enterprise 3.30 |
||
tarantella tarantella enterprise 3.40 |
||
vmware gsx server 2.0 |
||
vmware gsx server 2.0.1 build 2129 |
||
vmware gsx server 2.5.1 |
||
vmware gsx server 2.5.1 build 5336 |
||
vmware gsx server 3.0 build 7592 |
||
avaya s8300 r2.0.0 |
||
avaya s8300 r2.0.1 |
||
avaya s8500 r2.0.0 |
||
avaya s8500 r2.0.1 |
||
avaya s8700 r2.0.0 |
||
avaya s8700 r2.0.1 |
||
bluecoat proxysg |
||
cisco call manager |
||
cisco content services switch 11500 |
||
cisco gss 4480 global site selector |
||
cisco gss 4490 global site selector |
||
cisco mds 9000 |
||
cisco secure content accelerator 10000 |
||
securecomputing sidewinder 5.2 |
||
securecomputing sidewinder 5.2.0.01 |
||
securecomputing sidewinder 5.2.0.02 |
||
securecomputing sidewinder 5.2.0.03 |
||
securecomputing sidewinder 5.2.0.04 |
||
securecomputing sidewinder 5.2.1 |
||
securecomputing sidewinder 5.2.1.02 |
||
sun crypto accelerator 4000 1.0 |
||
bluecoat cacheos ca sa 4.1.10 |
||
bluecoat cacheos ca sa 4.1.12 |
||
cisco pix firewall software 6.0 |
||
cisco pix firewall software 6.0(1) |
||
cisco pix firewall software 6.0(2) |
||
cisco pix firewall software 6.0(3) |
||
cisco pix firewall software 6.0(4) |
||
cisco pix firewall software 6.0(4.101) |
||
cisco pix firewall software 6.1 |
||
cisco pix firewall software 6.1(1) |
||
cisco pix firewall software 6.1(2) |
||
cisco pix firewall software 6.1(3) |
||
cisco pix firewall software 6.1(4) |
||
cisco pix firewall software 6.1(5) |
||
cisco pix firewall software 6.2 |
||
cisco pix firewall software 6.2(1) |
||
cisco pix firewall software 6.2(2) |
||
cisco pix firewall software 6.2(3) |
||
cisco pix firewall software 6.2(3.100) |
||
cisco pix firewall software 6.3 |
||
cisco pix firewall software 6.3(1) |
||
cisco pix firewall software 6.3(2) |
||
cisco pix firewall software 6.3(3.102) |
||
cisco pix firewall software 6.3(3.109) |
Vulmon