Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0160

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2014-0160
Last Modified 31 Mar 2015 09:59:12
Published 07 Apr 2014 06:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-0160

Summary

The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.

Vulnerable Systems

Application

  • Openssl 1.0.1

  • Openssl 1.0.1a

  • Openssl 1.0.1b

  • Openssl 1.0.1c

  • Openssl 1.0.1d

  • Openssl 1.0.1e

  • Openssl 1.0.1f

  • Openssl 1.0.2


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=1084875

CONFIRM - http://www.openssl.org/news/secadv_20140407.txt

MISC - http://heartbleed.com/

CONFIRM - http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=96db9023b881d7cd9f379b0c154650d6c108e9a3

MLIST - [syslog-ng-announce] 20140411 syslog-ng Premium Edition 5 LTS (5.0.4a) has been released

CONFIRM - http://www.splunk.com/view/SP-CAAAMB3

SECTRACK - 1030082

SECTRACK - 1030081

SECTRACK - 1030080

SECTRACK - 1030079

SECTRACK - 1030078

SECTRACK - 1030077

SECTRACK - 1030074

SECTRACK - 1030026

CONFIRM - http://www.oracle.com/technetwork/topics/security/opensslheartbleedcve-2014-0160-2188454.html

DEBIAN - DSA-2896

CONFIRM - http://www.blackberry.com/btsc/KB35882

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21670161

CISCO - 20140409 OpenSSL Heartbeat Extension Vulnerability in Multiple Cisco Products

SECUNIA - 57721

SECUNIA - 57483

SECUNIA - 57347

FULLDISC - 20140408 Re: heartbleed OpenSSL bug CVE-2014-0160

FULLDISC - 20140408 heartbleed OpenSSL bug CVE-2014-0160

FULLDISC - 20140412 Re: heartbleed OpenSSL bug CVE-2014-0160

FULLDISC - 20140409 Re: heartbleed OpenSSL bug CVE-2014-0160

REDHAT - RHSA-2014:0396

REDHAT - RHSA-2014:0378

REDHAT - RHSA-2014:0377

REDHAT - RHSA-2014:0376

HP - HPSBMU02995

SUSE - SUSE-SA:2014:002

SUSE - openSUSE-SU-2014:0492

FEDORA - FEDORA-2014-4910

FEDORA - FEDORA-2014-4879

CERT - TA14-098A

CERT-VN - VU#720951

MISC - https://www.cert.fi/en/reports/2014/vulnerability788210.html

MISC - https://gist.github.com/chapmajs/10473815

CONFIRM - https://code.google.com/p/mod-spdy/issues/detail?id=85

MISC - https://blog.torproject.org/blog/openssl-bug-cve-2014-0160

BID - 66690

CONFIRM - http://www.getchef.com/blog/2014/04/09/enterprise-chef-11-1-3-release/

CONFIRM - http://www.getchef.com/blog/2014/04/09/enterprise-chef-1-4-9-release/

CONFIRM - http://www.getchef.com/blog/2014/04/09/chef-server-heartbleed-cve-2014-0160-releases/

CONFIRM - http://www.getchef.com/blog/2014/04/09/chef-server-11-0-12-release/

CONFIRM - http://www.f-secure.com/en/web/labs_global/fsc-2014-1

EXPLOIT-DB - 32764

EXPLOIT-DB - 32745

SECUNIA - 57968

SECUNIA - 57966

SECUNIA - 57836

FULLDISC - 20140411 MRI Rubies may contain statically linked, vulnerable OpenSSL

MISC - http://blog.fox-it.com/2014/04/08/openssl-heartbleed-bug-live-blog/

CONFIRM - http://cogentdatahub.com/ReleaseNotes.html

HP - HPSBMU03009

HP - HPSBMU03024

HP - HPSBMU03022

CONFIRM - http://www.kerio.com/support/kerio-control/release-history

CONFIRM - http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=3

CONFIRM - http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=1

HP - HPSBST03000

CONFIRM - http://advisories.mageia.org/MGASA-2014-0165.html

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

CONFIRM - https://filezilla-project.org/versions.php?type=server

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=isg400001843

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=isg400001841

CONFIRM - https://support.f5.com/kb/en-us/solutions/public/15000/100/sol15159.html?sr=36517217

HP - HPSBHF03136

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2014-0012.html

BUGTRAQ - 20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities

HP - SSRT101846

CONFIRM - http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0

MANDRIVA - MDVSA-2015:062

Related Patches

VMware VMSA-2014-0004 VMSA-2014-0005 VMware Player 6.0.2 for Windows (Update) (All Languages) (See Notes) (Rev 2)

VMware VMSA-2014-0004 VMSA-2014-0005 VMware Workstation 10.0.2 for Windows (Update) (All Languages) (See Notes) (Rev 2)

VMware VMSA-2014-0004 VMware Fusion 6.0.3 for Mac (See Notes)


Last Updated: 27 May 2016 11:07:11