Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3389

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-3389
Last Modified 16 Jul 2015 09:59:18
Published 06 Sep 2011 03:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-3389

Summary

The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a "BEAST" attack.

Vulnerable Systems

Operating System

  • Microsoft Windows

Application

  • Google Chrome

  • Microsoft Ie

  • Mozilla Firefox

  • Opera Browser


References

CERT-VN - VU#864643

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=737506

CONFIRM - https://bugzilla.novell.com/show_bug.cgi?id=719047

SECTRACK - 1026103

SECTRACK - 1025997

BID - 49778

BID - 49388

REDHAT - RHSA-2011:1384

CONFIRM - http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html

CONFIRM - http://www.opera.com/docs/changelogs/windows/1151/

CONFIRM - http://www.opera.com/docs/changelogs/unix/1151/

CONFIRM - http://www.opera.com/docs/changelogs/mac/1151/

MISC - http://www.insecure.cl/Beast-SSL.rar

MISC - http://www.imperialviolet.org/2011/09/23/chromeandbeast.html

CONFIRM - http://www.ibm.com/developerworks/java/jdk/alerts/

MISC - http://www.educatedguesswork.org/2011/09/security_impact_of_the_rizzodu.html

MISC - http://vnhacker.blogspot.com/2011/09/beast.html

CONFIRM - http://technet.microsoft.com/security/advisory/2588513

CONFIRM - http://support.apple.com/kb/HT5001

CONFIRM - http://support.apple.com/kb/HT4999

SECUNIA - 45791

OSVDB - 74829

CONFIRM - http://my.opera.com/securitygroup/blog/2011/09/28/the-beast-ssl-tls-issue

APPLE - APPLE-SA-2011-10-12-2

APPLE - APPLE-SA-2011-10-12-1

MISC - http://isc.sans.edu/diary/SSL+TLS+part+3+/11635

CONFIRM - http://googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html

MISC - http://eprint.iacr.org/2006/136

MISC - http://eprint.iacr.org/2004/111

MISC - http://ekoparty.org/2011/juliano-rizzo.php

CONFIRM - http://blogs.technet.com/b/srd/archive/2011/09/26/is-ssl-broken-more-about-security-advisory-2588513.aspx

CONFIRM - http://blogs.technet.com/b/msrc/archive/2011/09/26/microsoft-releases-security-advisory-2588513.aspx

CONFIRM - http://blog.mozilla.com/security/2011/09/27/attack-against-tls-protected-communications/

CONFIRM - http://www.opera.com/support/kb/view/1004/

CONFIRM - http://www.opera.com/docs/changelogs/windows/1160/

CONFIRM - http://www.opera.com/docs/changelogs/unix/1160/

CONFIRM - http://www.opera.com/docs/changelogs/mac/1160/

MS - MS12-006

REDHAT - RHSA-2012:0006

CONFIRM - http://support.apple.com/kb/HT5130

APPLE - APPLE-SA-2012-02-01-1

HP - SSRT100740

HP - HPSBMU02742

CONFIRM - http://support.apple.com/kb/HT5281

APPLE - APPLE-SA-2012-05-09-1

APPLE - APPLE-SA-2012-07-25-2

CONFIRM - http://support.apple.com/kb/HT5501

APPLE - APPLE-SA-2012-09-19-2

SECUNIA - 49198

SUSE - openSUSE-SU-2012:0063

SUSE - openSUSE-SU-2012:0030

HP - SSRT100710

HP - HPSBUX02730

SUSE - SUSE-SU-2012:0122

SUSE - SUSE-SU-2012:0114

SECUNIA - 48692

CONFIRM - https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_fetchmail

SECUNIA - 48948

SECUNIA - 48915

CERT - TA12-010A

HP - HPSBMU02900

SECTRACK - 1029190

SECUNIA - 55351

SECUNIA - 55350

SECUNIA - 55322

REDHAT - RHSA-2013:1455

APPLE - APPLE-SA-2013-10-22-3

UBUNTU - USN-1263-1

CONFIRM - http://support.apple.com/kb/HT6150

GENTOO - GLSA-201406-32

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

BUGTRAQ - 20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE

MISC - http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

Related Patches

SUN143506-06 Solaris 10 SPARC: GNOME 2.6.0: Python patch (Rev 2)

SUN143507-06 Solaris 10 x86: GNOME 2.6.0: Python patch (Rev 2)

Apple 2012-02-01 Mac OS X Server 10.7.3 Update

Apple 2012-02-01 Mac OS X 10.7.3 Update

Apple 2012-02-01 Mac OS X Server 10.7.3 Combo Update

Apple 2012-02-01 Mac OS X 10.7.3 Combo Update

Apple 2012-05-09 Mac OS X 10.7.4 Combo Update

Apple 2012-05-09 Mac OS X Server 10.7.4 Combo Update

Apple 2012-05-09 Mac OS X 10.7.4 Update

Apple 2012-05-09 Mac OS X Server 10.7.4 Update

Apple 2012-09-19 Mac OS X Server 10.7.5 Update

Apple 2012-09-19 Mac OS X 10.7.5 Update

Apple 2012-09-19 Mac OS X Server 10.7.5 Combo Update

Apple 2012-09-19 Mac OS X 10.7.5 Combo Update

Apple 2011-11-08 Java for Mac OS X 10.6 Update 6

Apple 2011-11-08 Java for Mac OS X 10.7 Update 1 (Lion)

Apple 2012-02-01 Security Update 2012-001 v1.1 Server (Snow Leopard)

Apple 2012-02-01 Security Update 2012-001 v1.1 (Snow Leopard)

Apple 2012-05-09 Security Update 2012-002 Server (Snow Leopard)

Apple 2012-05-09 Security Update 2012-002 (Snow Leopard)

Apple 2012-09-19 Security Update 2012-004 Server (Snow Leopard)

Apple 2012-09-19 Security Update 2012-004 (Snow Leopard)

Apple 2014-02-25 Security Update 2014-001 (Mountain Lion) (Rev 2)

Sun Java JRE 1.6.0_29 for Windows (Update) (All Languages) (See Notes)

Sun Java JRE 1.7.0_01 for Windows (Update) (All Languages) (See Notes)

MS12-006 Security Update for Windows Vista x64 (KB2585542)

MS12-006 Security Update for Windows 7 x64 (KB2585542)

Novell SUSE 2011:7842 mozilla-nss security update for SLE 10 SP4 i586

Novell SUSE 2011:7842 mozilla-nss security update for SLE 10 SP4 x86_64

Novell SUSE 2012:5609 java-1_4_2-ibm security update for SLES 11 SP1 x86_64

Novell SUSE 2012:5609 java-1_4_2-ibm security update for SLES 11 SP1 i586

Novell SUSE 2012:5872 java-1_6_0-ibm security update for SLES 11 SP1 i586

Novell SUSE 2012:5872 java-1_6_0-ibm security update for SLES 11 SP1 x86_64

Novell SUSE 2012:7908 java-1_4_2-ibm security update for SLES 10 SP4 i586

Novell SUSE 2012:7908 java-1_4_2-ibm security update for SLES 10 SP4 x86_64

Novell SUSE 2012:7926 java-1_6_0-ibm security update for SLES 10 SP4 i586

Novell SUSE 2012:7926 java-1_6_0-ibm security update for SLES 10 SP4 x86_64

Novell SUSE 2012:8080 python security update for SLE 10 SP4 x86_64

Novell SUSE 2012:8080 python security update for SLE 10 SP4 i586


Last Updated: 27 May 2016 11:09:16