Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
opensslOpenSSLOPENSSL:CVE-2004-0112
HistoryMar 17, 2004 - 12:00 a.m.

Vulnerability in OpenSSL CVE-2004-0112

2004-03-1700:00:00
www.openssl.org
20

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.8%

JSON
A flaw in SSL/TLS handshaking code when using Kerberos ciphersuites. A remote attacker could perform a carefully crafted SSL/TLS handshake against a server configured to use Kerberos ciphersuites in such a way as to cause OpenSSL to crash. Most applications have no ability to use Kerberos ciphersuites and will therefore be unaffected.

Related

debiancve 1
cert 3
openvas 10
cve 2
nvd 2
cvelist 2
nessus 23
slackware 1
securityvulns 2
redhat 1
cisco 1
f5 1
gentoo 1
suse 1
redhatcve 1
oraclelinux 3
debiancve
debiancve
CVE-2004-0112
2004-11-23 05:00:00
cert
cert
OpenSSL does not adequately validate length of Kerberos ticket during SSL/TLS handshake
2004-03-17 00:00:00
OpenSSL does not properly handle unknown message types
2004-03-17 00:00:00
OpenSSL contains null-pointer assignment in do_change_cipher_spec() function
2004-03-17 00:00:00
openvas
openvas
OpenSSL: DoS Vulnerability (CVE-2004-0112) - Windows
2021-08-13 00:00:00
OpenSSL: DoS Vulnerability (CVE-2004-0112) - Linux
2021-08-13 00:00:00
HP-UX Update for Apache HPSBUX01019
2009-05-05 00:00:00
cve
cve
CVE-2004-0112
2004-11-23 05:00:00
CVE-2005-1730
2007-03-03 23:00:00
nvd
nvd
CVE-2004-0112
2004-11-23 05:00:00
CVE-2005-1730
2005-12-31 05:00:00
cvelist
cvelist
CVE-2004-0112
2004-03-18 05:00:00
CVE-2005-1730
2007-03-03 23:00:00
nessus
nessus
Slackware 8.1 / 9.0 / 9.1 / current : OpenSSL security update (SSA:2004-077-01)
2005-07-13 00:00:00
SuSE-SA:2004:007: openssl
2004-07-25 00:00:00
OpenSSL < 0.9.6m / 0.9.7d Denial of Service
2012-01-04 00:00:00
slackware
slackware
OpenSSL security update
2004-03-17 17:34:04
securityvulns
securityvulns
OpenSSL Security Advisory [17 March 2004]
2004-03-17 00:00:00
US-CERT Technical Cyber Security Alert TA04-078A -- Multiple Vulnerabilities in OpenSSL
2004-03-19 00:00:00
redhat
redhat
(RHSA-2004:120) openssl security update
2004-05-21 00:00:00
cisco
cisco
Cisco OpenSSL Implementation Vulnerability
2004-03-17 13:00:00
f5
f5
Multiple vulnerabilities in OpenSSL - CAN-2004-0081, CAN-2004-0079, CAN-2004-0112
2004-02-23 04:00:00
gentoo
gentoo
Multiple OpenSSL Vulnerabilities
2004-03-17 00:00:00
suse
suse
remote denial-of-service in openssl
2004-03-17 13:37:40
redhatcve
redhatcve
CVE-2005-1730
2015-10-30 10:15:31
oraclelinux
oraclelinux
openssl-fips security update
2015-04-02 00:00:00
openssl security update
2019-03-13 00:00:00
openssl security update
2019-08-16 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.8%

JSON
Related for OPENSSL:CVE-2004-0112
debiancve1cert3openvas10cve2nvd2cvelist2nessus23slackware1securityvulns2redhat1cisco1f51gentoo1suse1redhatcve1oraclelinux3