Vulnerability Details : CVE-2006-3738
Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.
Vulnerability category: Overflow
Products affected by CVE-2006-3738
- cpe:2.3:a:openssl:openssl:0.9.7:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.7a:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.7b:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.7c:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.7d:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.7e:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.7f:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.7g:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.8:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.7i:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.7j:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.7k:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.8b:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.8c:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.8a:*:*:*:*:*:*:*
- cpe:2.3:a:openssl:openssl:0.9.7h:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-3738
96.41%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 100 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-3738
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2006-3738
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
Vendor statements for CVE-2006-3738
-
Red Hat 2007-03-14Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
References for CVE-2006-3738
-
http://www.gentoo.org/security/en/glsa/glsa-200612-11.xml
AMD64 x86 emulation base libraries: OpenSSL multiple vulnerabilities (GLSA 200612-11) — Gentoo security
-
http://www.novell.com/linux/security/advisories/2006_24_sr.html
Security - Support | SUSEPatch;Vendor Advisory
-
http://www.cisco.com/warp/public/707/cisco-sr-20061108-openssl.shtml
Cisco: Software, Network, and Cybersecurity Solutions - Cisco
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:172
Mandriva
-
http://www.debian.org/security/2006/dsa-1195
[SECURITY] [DSA 1195-1] new openssl096 packages fix denial of servicePatch;Vendor Advisory
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102711-1
-
http://www.xerox.com/downloads/usa/en/c/cert_ESSNetwork_XRX07001_v1.pdf
Page not found – Xerox Nav Content- Production
-
http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html
Apple - Lists.apple.com
-
http://www.vmware.com/support/esx21/doc/esx-213-200612-patch.html
Page not found
-
http://www.vupen.com/english/advisories/2006/3936
Site en construction
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102668-1
Patch
-
http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml
Linux Terminal Server Project: Multiple vulnerabilities (GLSA 200805-07) — Gentoo security
-
http://www.trustix.org/errata/2006/0054
Trustix | Empowering Trust and Security in the Digital AgePatch
-
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201531-1
-
http://www.novell.com/linux/security/advisories/2006_58_openssl.html
Security - Support | SUSEPatch;Vendor Advisory
-
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-007.txt.asc
-
http://www.securityfocus.com/bid/20249
Patch
-
http://www.vupen.com/english/advisories/2007/0343
Site en construction
-
http://www.redhat.com/support/errata/RHSA-2006-0695.html
SupportPatch
-
http://www.securityfocus.com/bid/22083
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:177
Mandriva
-
http://www.openssl.org/news/secadv_20060928.txt
404 Page not found | Library
-
http://www.oracle.com/technetwork/topics/security/cpujan2007-101493.html
Page not found | Oracle
-
http://www.securityfocus.com/archive/1/456546/100/200/threaded
-
http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html
VMware vSphere Documentation
-
http://kolab.org/security/kolab-vendor-notice-11.txt
Page not foundPatch
-
http://issues.rpath.com/browse/RPL-613
-
http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=498093&RenditionID=&poid=8881
Nortel: Technical Support
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4256
404 Not Found
-
ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc
-
http://www.vupen.com/english/advisories/2006/4314
Site en construction
-
http://securitytracker.com/id?1016943
GoDaddy Domain Name SearchPatch
-
http://www.vupen.com/english/advisories/2006/4417
Site en construction
-
http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html
VMware vSphere Documentation
-
http://www.vupen.com/english/advisories/2006/3820
Site en construction
-
http://www.cisco.com/en/US/products/hw/contnetw/ps4162/tsd_products_security_response09186a008077af1b.html
Products, Solutions, and Services - Cisco
-
http://docs.info.apple.com/article.html?artnum=304829
-
http://openvpn.net/changelog.html
Changelog For OpenVPN 2.1 | OpenVPNPatch
-
http://www.securityfocus.com/archive/1/447393/100/0/threaded
-
http://www.securityfocus.com/archive/1/447318/100/0/threaded
-
http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049715.html
[Full-Disclosure] Mailing List CharterPatch
-
http://security.freebsd.org/advisories/FreeBSD-SA-06:23.openssl.asc
Patch;Vendor Advisory
-
http://www.vmware.com/support/esx25/doc/esx-253-200612-patch.html
Page not found
-
http://itrc.hp.com/service/cki/docDisplay.do?docId=c00805100
-
http://www.vupen.com/english/advisories/2006/4264
Site en construction
-
http://www.vupen.com/english/advisories/2006/4401
Site en construction
-
http://marc.info/?l=bugtraq&m=130497311408250&w=2
'[security bulletin] HPSBOV02683 SSRT090208 rev.1 - HP Secure Web Server (SWS) for OpenVMS running Ap' - MARC
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:178
Mandriva
-
http://security.gentoo.org/glsa/glsa-200610-11.xml
OpenSSL: Multiple vulnerabilities (GLSA 200610-11) — Gentoo security
-
http://www.securityfocus.com/archive/1/470460/100/0/threaded
-
http://openbsd.org/errata.html#openssl2
OpenBSD: Errata and PatchesPatch
-
http://www.vupen.com/english/advisories/2007/1401
Webmail: access your OVH emails on ovhcloud.com | OVHcloud
-
http://www.vupen.com/english/advisories/2007/2783
Site en construction
-
http://securitytracker.com/id?1017522
Access Denied
-
http://www.us-cert.gov/cas/techalerts/TA06-333A.html
Page Not Found | CISAUS Government Resource
-
https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/29237
OpenSSL SSL_get_shared_ciphers() buffer overflow CVE-2006-3738 Vulnerability Report
-
http://www.kb.cert.org/vuls/id/547300
VU#547300 - OpenSSL SSL_get_shared_ciphers() vulnerable to buffer overflowUS Government Resource
-
http://www.vmware.com/support/esx25/doc/esx-254-200612-patch.html
Page not found
-
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.676946
The Slackware Linux Project: Slackware Security AdvisoriesPatch
-
http://www.vupen.com/english/advisories/2006/4750
Site en construction
-
http://www.ubuntu.com/usn/usn-353-1
USN-353-1: openssl vulnerabilities | Ubuntu security notices | UbuntuPatch
-
http://www.vupen.com/english/advisories/2007/2315
Site en construction
-
http://www.serv-u.com/releasenotes/
Success Center
-
http://support.avaya.com/elmodocs2/security/ASA-2006-260.htm
ASA-2006-260 HP-UX OpenSSL Denial of Service (DoS), Increase Privilige (HPSBUX02174)
-
http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.021-openssl.html
Patch;Vendor Advisory
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9370
404 Not Found
-
http://www.vupen.com/english/advisories/2006/3860
Site en construction
-
http://www.vupen.com/english/advisories/2006/4443
Site en construction
-
http://www.vupen.com/english/advisories/2006/3869
Site en construction
-
http://www.redhat.com/support/errata/RHSA-2008-0629.html
Support
-
http://www.vupen.com/english/advisories/2006/4036
Site en construction
-
http://itrc.hp.com/service/cki/docDisplay.do?docId=c00849540
-
http://www.debian.org/security/2006/dsa-1185
Debian -- The Universal Operating SystemPatch
-
http://www.vmware.com/support/esx2/doc/esx-202-200612-patch.html
Page not found
-
http://sourceforge.net/project/shownotes.php?release_id=461863&group_id=69227
Page not found - SourceForge.net
-
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01118771
-
http://support.avaya.com/elmodocs2/security/ASA-2006-220.htm
ASA-2006-220 (RHSA-2006-0695)
-
http://www.vupen.com/english/advisories/2006/3902
Site en construction
Jump to