SecurityTracker: (F-Secure Issues Fix) OpenSSL ASN.1 Bugs, SSL_get_shared_ciphers() Buffer Overflow, and SSLv2 Client Error Lets Remote Users Denial of Service or Execute Arbitrary Code

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (Security) > F-Secure Internet Gatekeeper

Vendors: F-Secure

(F-Secure Issues Fix) OpenSSL ASN.1 Bugs, SSL_get_shared_ciphers() Buffer Overflow, and SSLv2 Client Error Lets Remote Users Denial of Service or Execute Arbitrary Code

SecurityTracker Alert ID: 1017314

SecurityTracker URL: http://securitytracker.com/id/1017314

CVE Reference: CVE-2006-2937 (Links to External Site)

Date: Nov 29 2006

Impact: Denial of service via network

Fix Available: Yes Vendor Confirmed: Yes

Version(s): 6.40, 6.41, 6.42, 6.50, 6.60

Description: Several vulnerabilities were reported in OpenSSL. A remote user can cause denial of service conditions. F-Secure Internet Gatekeeper is affected.

A remote user can send specially crafted, invalid ASN.1 structures to trigger an infinite loop [CVE-2006-2937]. As a result, the process will consume excessive system memory. Versions prior to 0.9.7 are not affected.

A remote user can use certain types of public keys to cause the target system to take a disproportionate amount of time to process [CVE-2006-2940].

Dr. S. N. Henson developed the ASN.1 test suite for NISCC that uncovered these denial of service vulnerabilities.

A user can send a specially crafted list of ciphers to an application that uses the SSL_get_shared_ciphers() function to trigger a buffer overflow and potentially execute arbitrary code [CVE-2006-3738]. The vendor credits Tavis Ormandy and Will Drewry of the Google Security Team with reporting this vulnerability.

A remote server can cause a connected SSLv2 client to crash [CVE-2006-4343]. The vendor credits Tavis Ormandy and Will Drewry of the Google Security Team with reporting this vulnerability.

Impact: A remote user can execute arbitrary code on the target system.

A remote user can cause denial of service conditions.

Solution: F-Secure has issued a fix for F-Secure Internet Gatekeeper, which is affected by the OpenSSL ASN.1 denial of service vulnerability CVE-2006-2937. A patch for version 6.60 is available at:

ftp://ftp.f-secure.com/support/hotfix/fsig/fsigk660-02.zip

The F-Secure advisory is available at:

http://www.f-secure.com/security/fsc-2006-6.shtml

Cause: State error

Underlying OS: Windows (2000), Windows (2003)

Message History: This archive entry is a follow-up to the message listed below.

OpenSSL ASN.1 Bugs, SSL_get_shared_ciphers() Buffer Overflow, and SSLv2 Client Error Lets Remote Users Denial of Service or Execute Arbitrary Code

Source Message Contents

Date: Wed, 29 Nov 2006 09:03:56 -0500
Subject: OpenSSL denial of service vulnerability in F-Secure Anti-Virus for Microsoft Exchange and F-Secure Internet Gatekeeper



http://www.f-secure.com/security/fsc-2006-6.shtml

CVE-2006-2937

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2012, SecurityGlobal.net LLC