Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2004-0112
HistoryNov 23, 2004 - 5:00 a.m.

CVE-2004-0112

2004-11-2305:00:00
Debian Security Bug Tracker
security-tracker.debian.org
16

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

64.8%

JSON

The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read.

Related

openssl 1
cert 3
openvas 10
cve 2
nvd 2
cvelist 2
nessus 23
slackware 1
securityvulns 2
redhat 1
cisco 1
f5 1
gentoo 1
suse 1
redhatcve 1
oraclelinux 3
openssl
openssl
Vulnerability in OpenSSL CVE-2004-0112
2004-03-17 00:00:00
cert
cert
OpenSSL does not adequately validate length of Kerberos ticket during SSL/TLS handshake
2004-03-17 00:00:00
OpenSSL does not properly handle unknown message types
2004-03-17 00:00:00
OpenSSL contains null-pointer assignment in do_change_cipher_spec() function
2004-03-17 00:00:00
openvas
openvas
OpenSSL: DoS Vulnerability (CVE-2004-0112) - Windows
2021-08-13 00:00:00
OpenSSL: DoS Vulnerability (CVE-2004-0112) - Linux
2021-08-13 00:00:00
HP-UX Update for Apache HPSBUX01019
2009-05-05 00:00:00
cve
cve
CVE-2004-0112
2004-11-23 05:00:00
CVE-2005-1730
2007-03-03 23:00:00
nvd
nvd
CVE-2004-0112
2004-11-23 05:00:00
CVE-2005-1730
2005-12-31 05:00:00
cvelist
cvelist
CVE-2004-0112
2004-03-18 05:00:00
CVE-2005-1730
2007-03-03 23:00:00
nessus
nessus
Slackware 8.1 / 9.0 / 9.1 / current : OpenSSL security update (SSA:2004-077-01)
2005-07-13 00:00:00
SuSE-SA:2004:007: openssl
2004-07-25 00:00:00
OpenSSL < 0.9.6m / 0.9.7d Denial of Service
2012-01-04 00:00:00
slackware
slackware
OpenSSL security update
2004-03-17 17:34:04
securityvulns
securityvulns
OpenSSL Security Advisory [17 March 2004]
2004-03-17 00:00:00
US-CERT Technical Cyber Security Alert TA04-078A -- Multiple Vulnerabilities in OpenSSL
2004-03-19 00:00:00
redhat
redhat
(RHSA-2004:120) openssl security update
2004-05-21 00:00:00
cisco
cisco
Cisco OpenSSL Implementation Vulnerability
2004-03-17 13:00:00
f5
f5
Multiple vulnerabilities in OpenSSL - CAN-2004-0081, CAN-2004-0079, CAN-2004-0112
2004-02-23 04:00:00
gentoo
gentoo
Multiple OpenSSL Vulnerabilities
2004-03-17 00:00:00
suse
suse
remote denial-of-service in openssl
2004-03-17 13:37:40
redhatcve
redhatcve
CVE-2005-1730
2015-10-30 10:15:31
oraclelinux
oraclelinux
openssl-fips security update
2015-04-02 00:00:00
openssl security update
2019-03-13 00:00:00
openssl security update
2019-08-16 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

64.8%

JSON
Related for DEBIANCVE:CVE-2004-0112
openssl1cert3openvas10cve2nvd2cvelist2nessus23slackware1securityvulns2redhat1cisco1f51gentoo1suse1redhatcve1oraclelinux3