Browse archive

Latest news

The security of WordPress plugins

How to detect hidden administrator apps on Android

Key obstacles to effective IT security strategies

CyanogenMod founder aims to thwart data-grabbing apps

Businesses not fully implementing infosec programs

Is accessing work apps on the move destructive?

Microsoft releases Enhanced Mitigation Experience Toolkit 4.0

New regulation for ENISA, the EU cybersecurity agency

F-Secure advances fight against exploits

Free anti-spam software for the Mac

Information security executives need to be strategic thinkers

U.S. tech companies sharing bug info with U.S. govt before releasing fixes

Account takeover attempts have nearly doubled

It takes 10 hours to identify a security breach

Guccifer hacks U.S. nuclear security agency chief

British GCHQ spied on G20 delegates to gain advantage in talks

Hacking charge stations for electric cars

OpenSSL Security Vulnerabilities Roundup

by Berislav Kucan

OpenSSL Security Advisory issued on 30 July 2002 that points to several security issues within OpenSSL. There are four remotely exploitable buffer overflows in OpenSSL. There are also encoding problems in the ASN.1 library used by OpenSSL. Several of these vulnerabilities could be used by a remote attacker to execute arbitrary code on the target system. All could be used to create denial of service.

Advisory #1 consist of the following vulnerabilities:

1. The client master key in SSL2 could be oversized and overrun a buffer. This vulnerability was also independently discovered by consultants at Neohapsis (http://www.neohapsis.com/) who have also demonstrated that the vulerability is exploitable. Exploit code is not available at this time.

2. The session ID supplied to a client in SSL3 could be oversized and overrun a buffer.

3. The master key supplied to an SSL3 server could be oversized and overrun a stack-based buffer. This issues only affects OpenSSL 0.9.7 before 0.9.7-beta3 with Kerberos enabled.

4. Various buffers for ASCII representations of integers were too small on 64 bit platforms.

Advisory #2 says that the ASN1 parser can be confused by supplying it with certain invalid encodings.

Both advisories can be found in the mentioned OpenSSL Security Advisory available over here:

http://www.net-security.org/vuln.php?id=1916

CERT Advisory CA-2002-23 - Multiple Vulnerabilities In OpenSSL

http://www.net-security.org/advisory.php?id=880

Systems Affected:

* OpenSSL prior to 0.9.6e, up to and including pre-release 0.9.7-beta2

* OpenSSL pre-release 0.9.7-beta2 and prior with Kerberos enabled

* SSLeay library

Vendor security advisories:

Red Hat Security Advisory - Updated openssl packages fix remote vulnerabilities

http://www.net-security.org/advisory.php?id=890

EnGarde Secure Linux Advisory - Several vulnerabilities in the openssl library

http://www.net-security.org/advisory.php?id=889

Debian Security Advisory - Multiple OpenSSL problems

http://www.net-security.org/advisory.php?id=888

SuSE Security Announcement - openssl

http://www.net-security.org/advisory.php?id=884

Mandrake Linux Security Advisory - openssl

http://www.net-security.org/advisory.php?id=882

Solutions: