Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 SSL:OPENSSL-REC-HANDLING-DOS

Severity

 Minor

Recommended

 No

Recommended Action

 Drop

Category

 SSL

Keywords

 OpenSSL TLS Connection Record Handling Denial of Service

Release Date

 2010/10/14

Update Number

 1792

Supported Platforms

 idp-4.0+, isg-3.4+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

SSL: OpenSSL TLS Connection Record Handling Denial of Service


This signature detects attempts to exploit a known vulnerability in OpenSSL. It is due to an error in the ssl3_get_record() function when handling TLS connections. A remote attacker can exploit this by crafting certain records in TLS packets. A successful attack can result in the termination of the affected service due to a read attempt at NULL, which leads to a denial-of-service condition.

Extended Description

OpenSSL is prone to a denial-of-service vulnerability caused by a NULL-pointer dereference. An attacker can exploit this issue to crash the affected application, denying service to legitimate users. OpenSSL versions 0.9.8f through 0.9.8m are vulnerable.

Affected Products

  • Apple mac_os_x 10.6
  • Apple mac_os_x 10.6.1
  • Apple mac_os_x 10.6.2
  • Apple mac_os_x 10.6.3
  • Apple mac_os_x 10.6.4
  • Apple mac_os_x 10.6.5
  • Apple mac_os_x 10.6.5
  • Apple mac_os_x 10.6.6
  • Apple mac_os_x 10.6.7
  • Apple mac_os_x_server 10.6
  • Apple mac_os_x_server 10.6.1
  • Apple mac_os_x_server 10.6.2
  • Apple mac_os_x_server 10.6.3
  • Apple mac_os_x_server 10.6.4
  • Apple mac_os_x_server 10.6.5
  • Apple mac_os_x_server 10.6.5
  • Apple mac_os_x_server 10.6.6
  • Apple mac_os_x_server 10.6.7
  • Blue_coat_systems blue_coat_reporter 8.3.3.1
  • Blue_coat_systems blue_coat_reporter 8.3.7.1
  • Blue_coat_systems blue_coat_reporter 9.1.5.1
  • Blue_coat_systems blue_coat_reporter 9.2.3.1
  • F5 arx 5.1.0
  • F5 arx 5.1.5
  • F5 bigip_apm 10.1.0
  • F5 big-ip_application_security_manager 10.1.0
  • F5 bigip_application_security_manager_(asm) 10.1.0
  • F5 bigip_edge 10.1.0
  • F5 bigip_global_traffic_manager_(gtm) 10.1.0
  • F5 bigip_link_controller 10.1.0
  • F5 bigip_local_traffic_manager_(ltm) 10.1.0
  • F5 big-ip_protocol_security_manager 10.1.0
  • F5 bigip_psm 10.1.0
  • F5 bigip_wan_optimization_module 10.1.0
  • F5 bigip_webaccelerator 10.1.0
  • F5 enterprise_manager 2.0
  • Hp hp-ux B.11.11
  • Hp hp-ux B.11.23
  • Hp hp-ux B.11.31
  • Ibm aix 5.1
  • Ibm aix 5.1.0 L
  • Ibm aix 5.2
  • Ibm aix 5.2.0 L
  • Ibm aix 5.2.2
  • Ibm aix 5.3
  • Ibm aix 5.3.0 L
  • Ibm aix 5.3.10
  • Ibm aix 5.3.7
  • Ibm aix 5.3.8
  • Ibm aix 5.3.9
  • Ibm aix 6.1
  • Intel active_management_technology_sdk 1.0
  • Intel active_management_technology_sdk 2.0
  • Intel active_management_technology_sdk 2.1
  • Intel active_management_technology_sdk 2.2
  • Intel active_management_technology_sdk 2.5
  • Intel active_management_technology_sdk 2.6
  • Intel active_management_technology_sdk 3.0
  • Intel active_management_technology_sdk 3.1
  • Intel active_management_technology_sdk 3.2
  • Intel active_management_technology_sdk 4.0
  • Intel active_management_technology_sdk 4.1
  • Intel active_management_technology_sdk 5.0
  • Intel setup_and_configuration_service 5.0
  • Intel setup_and_configuration_service 6.0
  • Mandriva corporate_server 4.0
  • Mandriva corporate_server 4.0.0 X86 64
  • Mandriva enterprise_server 5
  • Mandriva enterprise_server 5 X86 64
  • Mandriva linux_mandrake 2008.0
  • Mandriva linux_mandrake 2008.0 X86 64
  • Mandriva linux_mandrake 2009.0
  • Mandriva linux_mandrake 2009.0 X86 64
  • Mandriva linux_mandrake 2009.1
  • Mandriva linux_mandrake 2009.1 X86 64
  • Mandriva linux_mandrake 2010.0
  • Mandriva linux_mandrake 2010.0 X86 64
  • Mandriva multi_network_firewall 2.0.0
  • Openbsd openbsd 4.5
  • Openbsd openbsd 4.6
  • Openbsd openbsd 4.7
  • Openssl_project openssl 0.9.8F
  • Openssl_project openssl 0.9.8G
  • Openssl_project openssl 0.9.8H
  • Openssl_project openssl 0.9.8I
  • Openssl_project openssl 0.9.8J
  • Openssl_project openssl 0.9.8K
  • Openssl_project openssl 0.9.8L
  • Openssl_project openssl 0.9.8M
  • Pardus linux_2009
  • Red_hat fedora 11
  • Red_hat fedora 12
  • Red_hat fedora 13
  • Sun opensolaris Build Snv 01
  • Sun opensolaris Build Snv 02
  • Sun opensolaris Build Snv 100
  • Sun opensolaris Build Snv 101
  • Sun opensolaris Build Snv 101A
  • Sun opensolaris Build Snv 102
  • Sun opensolaris Build Snv 103
  • Sun opensolaris Build Snv 104
  • Sun opensolaris Build Snv 105
  • Sun opensolaris Build Snv 106
  • Sun opensolaris Build Snv 107
  • Sun opensolaris Build Snv 108
  • Sun opensolaris Build Snv 109
  • Sun opensolaris Build Snv 110
  • Sun opensolaris Build Snv 111
  • Sun opensolaris Build Snv 111A
  • Sun opensolaris Build Snv 112
  • Sun opensolaris Build Snv 113
  • Sun opensolaris Build Snv 114
  • Sun opensolaris Build Snv 115
  • Sun opensolaris Build Snv 116
  • Sun opensolaris Build Snv 117
  • Sun opensolaris Build Snv 118
  • Sun opensolaris Build Snv 119
  • Sun opensolaris Build Snv 120
  • Sun opensolaris Build Snv 121
  • Sun opensolaris Build Snv 122
  • Sun opensolaris Build Snv 123
  • Sun opensolaris Build Snv 124
  • Sun opensolaris Build Snv 125
  • Sun opensolaris Build Snv 126
  • Sun opensolaris Build Snv 127
  • Sun opensolaris Build Snv 128
  • Sun opensolaris Build Snv 129
  • Sun opensolaris Build Snv 13
  • Sun opensolaris Build Snv 130
  • Sun opensolaris Build Snv 131
  • Sun opensolaris Build Snv 132
  • Sun opensolaris Build Snv 133
  • Sun opensolaris Build Snv 134
  • Sun opensolaris Build Snv 135
  • Sun opensolaris Build Snv 136
  • Sun opensolaris Build Snv 19
  • Sun opensolaris Build Snv 22
  • Sun opensolaris Build Snv 28
  • Sun opensolaris Build Snv 29
  • Sun opensolaris Build Snv 35
  • Sun opensolaris Build Snv 36
  • Sun opensolaris Build Snv 37
  • Sun opensolaris Build Snv 38
  • Sun opensolaris Build Snv 39
  • Sun opensolaris Build Snv 41
  • Sun opensolaris Build Snv 45
  • Sun opensolaris Build Snv 47
  • Sun opensolaris Build Snv 48
  • Sun opensolaris Build Snv 49
  • Sun opensolaris Build Snv 50
  • Sun opensolaris Build Snv 51
  • Sun opensolaris Build Snv 54
  • Sun opensolaris Build Snv 56
  • Sun opensolaris Build Snv 57
  • Sun opensolaris Build Snv 58
  • Sun opensolaris Build Snv 59
  • Sun opensolaris Build Snv 61
  • Sun opensolaris Build Snv 64
  • Sun opensolaris Build Snv 67
  • Sun opensolaris Build Snv 68
  • Sun opensolaris Build Snv 71
  • Sun opensolaris Build Snv 74
  • Sun opensolaris Build Snv 76
  • Sun opensolaris Build Snv 77
  • Sun opensolaris Build Snv 78
  • Sun opensolaris Build Snv 80
  • Sun opensolaris Build Snv 81
  • Sun opensolaris Build Snv 82
  • Sun opensolaris Build Snv 83
  • Sun opensolaris Build Snv 84
  • Sun opensolaris Build Snv 85
  • Sun opensolaris Build Snv 86
  • Sun opensolaris Build Snv 87
  • Sun opensolaris Build Snv 88
  • Sun opensolaris Build Snv 89
  • Sun opensolaris Build Snv 90
  • Sun opensolaris Build Snv 91
  • Sun opensolaris Build Snv 92
  • Sun opensolaris Build Snv 93
  • Sun opensolaris Build Snv 94
  • Sun opensolaris Build Snv 95
  • Sun opensolaris Build Snv 96
  • Sun opensolaris Build Snv 98
  • Sun opensolaris Build Snv 99
  • Sun opensolaris
  • Vmware vcenter 4.0
  • Vmware vcenter 4.0 Update 1
  • Vmware vcenter 4.1
  • Vmware virtualcenter 2.5
  • Vmware virtualcenter 2.5 Update 1
  • Vmware virtualcenter 2.5 Update 2
  • Vmware virtualcenter 2.5.Update 3 Build 11983
  • Vmware virtualcenter 2.5 Update 4
  • Vmware virtualcenter 2.5 Update 5
  • Vmware virtualcenter 2.5 Update 6
  • Voodoo_circle circle 1.1.39
  • Voodoo_circle circle_xtelnet 0.4.5

References

  • BugTraq: 39013
  • CVE: CVE-2010-0740

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out