5 - DSA-1763

Executive Summary

Summary
Title	New openssl packages fix denial of service

Informations
Name	DSA-1763	First vendor Publication	2009-04-06
Vendor	Debian	Last vendor Modification	2009-04-06
Severity (Vendor)	N/A	Revision	1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score	5	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

It was discovered that insufficient length validations in the ASN.1 handling of the OpenSSL crypto library may lead to denial of service when processing a manipulated certificate.

For the old stable distribution (etch), this problem has been fixed in version 0.9.8c-4etch5 of the openssl package and in version 0.9.7k-3.1etch3 of the openssl097 package.

For the stable distribution (lenny), this problem has been fixed in version 0.9.8g-15+lenny1.

For the unstable distribution (sid), this problem has been fixed in version 0.9.8g-16.

We recommend that you upgrade your openssl packages.

Original Source

Url : http://www.debian.org/security/2009/dsa-1763

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10198

Oval ID:	oval:org.mitre.oval:def:10198
Title:	The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.
Description:	The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-0590	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section openssl-perl is earlier than 0:0.9.7a-33.26 AND openssl-devel is earlier than 0:0.9.7a-33.26 AND openssl is earlier than 0:0.9.7a-33.26 OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section openssl-perl is earlier than 0:0.9.7a-43.17.el4_8.5 AND openssl-devel is earlier than 0:0.9.7a-43.17.el4_8.5 AND openssl is earlier than 0:0.9.7a-43.17.el4_8.5 OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section openssl-perl is earlier than 0:0.9.8e-12.el5 AND openssl-devel is earlier than 0:0.9.8e-12.el5 AND openssl is earlier than 0:0.9.8e-12.el5

Definition Id: oval:org.mitre.oval:def:13751

Oval ID:	oval:org.mitre.oval:def:13751
Title:	DSA-1763-1 openssl -- programming error
Description:	It was discovered that insufficient length validations in the ASN.1 handling of the OpenSSL crypto library may lead to denial of service when processing a manipulated certificate. For the old stable distribution, this problem has been fixed in version 0.9.8c-4etch5 of the openssl package and in version 0.9.7k-3.1etch3 of the openssl097 package. For the stable distribution, this problem has been fixed in version 0.9.8g-15+lenny1. For the unstable distribution, this problem has been fixed in version 0.9.8g-16. We recommend that you upgrade your openssl packages.
Family:	unix	Class:	patch
Reference(s):	DSA-1763-1 CVE-2009-0590	Version:	5
Platform(s):	Debian GNU/Linux 5.0 Debian GNU/Linux 4.0	Product(s):	openssl
Definition Synopsis:
Release section Debian GNU/Linux 5.0 is installed AND Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section libssl-dev DPKG is earlier than 0.9.8g-15+lenny1 AND libssl0.9.8-dbg DPKG is earlier than 0.9.8g-15+lenny1 AND libssl0.9.8 DPKG is earlier than 0.9.8g-15+lenny1 AND openssl DPKG is earlier than 0.9.8g-15+lenny1 OR Release section Debian GNU/Linux 4.0 is installed. AND Packages section libssl0.9.7-dbg DPKG is earlier than 0.9.7k-3.1etch3 AND libssl-dev DPKG is earlier than 0.9.8c-4etch5 AND libssl0.9.8-dbg DPKG is earlier than 0.9.8c-4etch5 AND openssl DPKG is earlier than 0.9.8c-4etch5 AND libssl0.9.8 DPKG is earlier than 0.9.8c-4etch5 AND libssl0.9.7 DPKG is earlier than 0.9.7k-3.1etch3

Definition Id: oval:org.mitre.oval:def:13799

Oval ID:	oval:org.mitre.oval:def:13799
Title:	USN-750-1 -- openssl vulnerability
Description:	It was discovered that OpenSSL did not properly validate the length of an encoded BMPString or UniversalString when printing ASN.1 strings. If a user or automated system were tricked into processing a crafted certificate, an attacker could cause a denial of service via application crash in applications linked against OpenSSL.
Family:	unix	Class:	patch
Reference(s):	USN-750-1 CVE-2009-0590	Version:	5
Platform(s):	Ubuntu 7.10 Ubuntu 8.04 Ubuntu 6.06 Ubuntu 8.10	Product(s):	openssl
Definition Synopsis:
Release section Ubuntu 7.10 is installed AND Supported architectures section Installed architecture is sparc AND Installed architecture is i386 AND Installed architecture is amd64 AND Installed architecture is lpia AND Installed architecture is powerpc AND Packages section libcrypto0.9.8-udeb DPKG is earlier than 0.9.8e-5ubuntu3.4 AND libssl0.9.8-dbg DPKG is earlier than 0.9.8e-5ubuntu3.4 AND libssl0.9.8 DPKG is earlier than 0.9.8e-5ubuntu3.4 AND libssl-dev DPKG is earlier than 0.9.8e-5ubuntu3.4 AND openssl DPKG is earlier than 0.9.8e-5ubuntu3.4 OR Release section Ubuntu 8.04 is installed AND Architecture section Architecture independent section Installed architecture is all AND openssl-doc DPKG is earlier than 0.9.8g-4ubuntu3.5 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section libcrypto0.9.8-udeb DPKG is earlier than 0.9.8g-4ubuntu3.5 AND libssl0.9.8-dbg DPKG is earlier than 0.9.8g-4ubuntu3.5 AND libssl0.9.8 DPKG is earlier than 0.9.8g-4ubuntu3.5 AND libssl-dev DPKG is earlier than 0.9.8g-4ubuntu3.5 AND openssl DPKG is earlier than 0.9.8g-4ubuntu3.5 OR Release section Ubuntu 6.06 is installed AND Supported architectures section Installed architecture is sparc AND Installed architecture is i386 AND Installed architecture is amd64 AND Installed architecture is powerpc AND Packages section libssl0.9.8 DPKG is earlier than 0.9.8a-7ubuntu0.7 AND libcrypto0.9.8-udeb DPKG is earlier than 0.9.8a-7ubuntu0.7 AND libssl0.9.8-dbg DPKG is earlier than 0.9.8a-7ubuntu0.7 AND openssl DPKG is earlier than 0.9.8a-7ubuntu0.7 AND libssl-dev DPKG is earlier than 0.9.8a-7ubuntu0.7 OR Release section Ubuntu 8.10 is installed AND Architecture section Architecture independent section Installed architecture is all AND openssl-doc DPKG is earlier than 0.9.8g-10.1ubuntu2.2 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section libcrypto0.9.8-udeb DPKG is earlier than 0.9.8g-10.1ubuntu2.2 AND libssl0.9.8-dbg DPKG is earlier than 0.9.8g-10.1ubuntu2.2 AND libssl0.9.8 DPKG is earlier than 0.9.8g-10.1ubuntu2.2 AND libssl-dev DPKG is earlier than 0.9.8g-10.1ubuntu2.2 AND openssl DPKG is earlier than 0.9.8g-10.1ubuntu2.2

Definition Id: oval:org.mitre.oval:def:22194

Oval ID:	oval:org.mitre.oval:def:22194
Title:	HP-UX Running OpenSSL, Remote Denial of Service (DoS), Bypass Security Restrictions
Description:	The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-0590	Version:	8
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02435 HP-UX B.11.11 AND filesets tests fips_1_1_2.FIPS-CONF version is less than FIPS-OPENSSL-1.1.2.049 AND fips_1_1_2.FIPS-DOC version is less than FIPS-OPENSSL-1.1.2.049 AND fips_1_1_2.FIPS-INC version is less than FIPS-OPENSSL-1.1.2.049 AND fips_1_1_2.FIPS-LIB version is less than FIPS-OPENSSL-1.1.2.049 AND fips_1_1_2.FIPS-MAN version is less than FIPS-OPENSSL-1.1.2.049 AND fips_1_1_2.FIPS-MIS version is less than FIPS-OPENSSL-1.1.2.049 AND fips_1_1_2.FIPS-RUN version is less than FIPS-OPENSSL-1.1.2.049 AND fips_1_1_2.FIPS-SRC version is less than FIPS-OPENSSL-1.1.2.049 OR Criteria meets HP Security Bulletin HPSBUX02435 HP-UX B.11.11 AND filesets tests fips_1_2.FIPS-CONF version is less than FIPS-OPENSSL-1.2.001 AND fips_1_2.FIPS-DOC version is less than FIPS-OPENSSL-1.2.001 AND fips_1_2.FIPS-INC version is less than FIPS-OPENSSL-1.2.001 AND fips_1_2.FIPS-LIB version is less than FIPS-OPENSSL-1.2.001 AND fips_1_2.FIPS-MAN version is less than FIPS-OPENSSL-1.2.001 AND fips_1_2.FIPS-MIS version is less than FIPS-OPENSSL-1.2.001 AND fips_1_2.FIPS-RUN version is less than FIPS-OPENSSL-1.2.001 AND fips_1_2.FIPS-SRC version is less than FIPS-OPENSSL-1.2.001 OR Criteria meets HP Security Bulletin HPSBUX02435 HP-UX B.11.11 AND filesets tests openssl.OPENSSL-CER version is less than A.00.09.07m.049 AND openssl.OPENSSL-CONF version is less than A.00.09.07m.049 AND openssl.OPENSSL-DOC version is less than A.00.09.07m.049 AND openssl.OPENSSL-INC version is less than A.00.09.07m.049 AND openssl.OPENSSL-LIB version is less than A.00.09.07m.049 AND openssl.OPENSSL-MAN version is less than A.00.09.07m.049 AND openssl.OPENSSL-MIS version is less than A.00.09.07m.049 AND openssl.OPENSSL-PRNG version is less than A.00.09.07m.049 AND openssl.OPENSSL-PVT version is less than A.00.09.07m.049 AND openssl.OPENSSL-RUN version is less than A.00.09.07m.049 AND openssl.OPENSSL-SRC version is less than A.00.09.07m.049 OR Criteria meets HP Security Bulletin HPSBUX02435 HP-UX B.11.23 AND filesets tests URL: version is less than FIPS-OPENSSL-1.1.2.050 AND fips_1_1_2.FIPS-CONF version is less than FIPS-OPENSSL-1.1.2.050 AND fips_1_1_2.FIPS-DOC version is less than FIPS-OPENSSL-1.1.2.050 AND fips_1_1_2.FIPS-INC version is less than FIPS-OPENSSL-1.1.2.050 AND fips_1_1_2.FIPS-LIB version is less than FIPS-OPENSSL-1.1.2.050 AND fips_1_1_2.FIPS-MAN version is less than FIPS-OPENSSL-1.1.2.050 AND fips_1_1_2.FIPS-MIS version is less than FIPS-OPENSSL-1.1.2.050 AND fips_1_1_2.FIPS-RUN version is less than FIPS-OPENSSL-1.1.2.050 AND fips_1_1_2.FIPS-SRC version is less than FIPS-OPENSSL-1.1.2.050 OR Criteria meets HP Security Bulletin HPSBUX02435 HP-UX B.11.23 AND filesets tests fips_1_2.FIPS-CONF version is less than FIPS-OPENSSL-1.2.002 AND fips_1_2.FIPS-DOC version is less than FIPS-OPENSSL-1.2.002 AND fips_1_2.FIPS-INC version is less than FIPS-OPENSSL-1.2.002 AND fips_1_2.FIPS-LIB version is less than FIPS-OPENSSL-1.2.002 AND fips_1_2.FIPS-MAN version is less than FIPS-OPENSSL-1.2.002 AND fips_1_2.FIPS-MIS version is less than FIPS-OPENSSL-1.2.002 AND fips_1_2.FIPS-RUN version is less than FIPS-OPENSSL-1.2.002 AND fips_1_2.FIPS-SRC version is less than FIPS-OPENSSL-1.2.002 OR Criteria meets HP Security Bulletin HPSBUX02435 HP-UX B.11.23 AND filesets tests openssl.OPENSSL-CER version is less than A.00.09.07m.050 AND openssl.OPENSSL-CONF version is less than A.00.09.07m.050 AND openssl.OPENSSL-DOC version is less than A.00.09.07m.050 AND openssl.OPENSSL-INC version is less than A.00.09.07m.050 AND openssl.OPENSSL-LIB version is less than A.00.09.07m.050 AND openssl.OPENSSL-MAN version is less than A.00.09.07m.050 AND openssl.OPENSSL-MIS version is less than A.00.09.07m.050 AND openssl.OPENSSL-PRNG version is less than A.00.09.07m.050 AND openssl.OPENSSL-PVT version is less than A.00.09.07m.050 AND openssl.OPENSSL-RUN version is less than A.00.09.07m.050 AND openssl.OPENSSL-SRC version is less than A.00.09.07m.050 OR Criteria meets HP Security Bulletin HPSBUX02435 HP-UX B.11.31 AND filesets tests URL: version is less than FIPS-OPENSSL-1.1.2.051 AND fips_1_1_2.FIPS-CONF version is less than FIPS-OPENSSL-1.1.2.051 AND fips_1_1_2.FIPS-DOC version is less than FIPS-OPENSSL-1.1.2.051 AND fips_1_1_2.FIPS-INC version is less than FIPS-OPENSSL-1.1.2.051 AND fips_1_1_2.FIPS-LIB version is less than FIPS-OPENSSL-1.1.2.051 AND fips_1_1_2.FIPS-MAN version is less than FIPS-OPENSSL-1.1.2.051 AND fips_1_1_2.FIPS-MIS version is less than FIPS-OPENSSL-1.1.2.051 AND fips_1_1_2.FIPS-RUN version is less than FIPS-OPENSSL-1.1.2.051 AND fips_1_1_2.FIPS-SRC version is less than FIPS-OPENSSL-1.1.2.051 OR Criteria meets HP Security Bulletin HPSBUX02435 HP-UX B.11.31 AND filesets tests fips_1_2.FIPS-CONF version is less than FIPS-OPENSSL-1.2.003 AND fips_1_2.FIPS-DOC version is less than FIPS-OPENSSL-1.2.003 AND fips_1_2.FIPS-INC version is less than FIPS-OPENSSL-1.2.003 AND fips_1_2.FIPS-LIB version is less than FIPS-OPENSSL-1.2.003 AND fips_1_2.FIPS-MAN version is less than FIPS-OPENSSL-1.2.003 AND fips_1_2.FIPS-MIS version is less than FIPS-OPENSSL-1.2.003 AND fips_1_2.FIPS-RUN version is less than FIPS-OPENSSL-1.2.003 AND fips_1_2.FIPS-SRC version is less than FIPS-OPENSSL-1.2.003 OR Criteria meets HP Security Bulletin HPSBUX02435 HP-UX B.11.31 AND filesets tests openssl.OPENSSL-CER version is less than A.00.09.08k.003 AND openssl.OPENSSL-CONF version is less than A.00.09.08k.003 AND openssl.OPENSSL-DOC version is less than A.00.09.08k.003 AND openssl.OPENSSL-INC version is less than A.00.09.08k.003 AND openssl.OPENSSL-LIB version is less than A.00.09.08k.003 AND openssl.OPENSSL-MAN version is less than A.00.09.08k.003 AND openssl.OPENSSL-MIS version is less than A.00.09.08k.003 AND openssl.OPENSSL-PRNG version is less than A.00.09.08k.003 AND openssl.OPENSSL-PVT version is less than A.00.09.08k.003 AND openssl.OPENSSL-RUN version is less than A.00.09.08k.003 AND openssl.OPENSSL-SRC version is less than A.00.09.08k.003

Definition Id: oval:org.mitre.oval:def:25196

Oval ID:	oval:org.mitre.oval:def:25196
Title:	Vulnerability in OpenSSL before 0.9.8k, allows remote attackers to cause a denial of service (invalid memory access and application crash)
Description:	The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2009-0590	Version:	3
Platform(s):	Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2	Product(s):	OpenSSL
Definition Synopsis:
Check vulnerable OpenSSL Check vulnerable versions of OpenSSL Check if the version of OpenSSL 0.9.1c before 0.9.8k AND OpenSSL is installed OR Check vulnerable OpenSSL (32_bit) Check vulnerable versions of OpenSSL (32_bit) Check if the version of OpenSSL 0.9.1c before 0.9.8k (32_bit) AND OpenSSL (32_bit) is installed AND Check if the version of ssleay32.dll 0.9.1c before 0.9.8k ProgramFilesDir AND Check if the version of ssleay32.dll 0.9.1c before 0.9.8k ProgramFilesDir x86 AND Check if the version of ssleay32.dll 0.9.1c before 0.9.8k Sytem32 and SysWOW64

Definition Id: oval:org.mitre.oval:def:6996

Oval ID:	oval:org.mitre.oval:def:6996
Title:	OpenSSL Multiple Vulnerabilities
Description:	The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-0590	Version:	5
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-201005401-SG is not installed

Definition Id: oval:org.mitre.oval:def:8038

Oval ID:	oval:org.mitre.oval:def:8038
Title:	DSA-1763 openssl -- programming error
Description:	It was discovered that insufficient length validations in the ASN.1 handling of the OpenSSL crypto library may lead to denial of service when processing a manipulated certificate.
Family:	unix	Class:	patch
Reference(s):	DSA-1763 CVE-2009-0590	Version:	3
Platform(s):	Debian GNU/Linux 5.0 Debian GNU/Linux 4.0	Product(s):	openssl
Definition Synopsis:
Release section Debian GNU/Linux 5.0 is installed AND Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section libssl-dev is earlier than 0.9.8g-15+lenny1 AND libssl0.9.8-dbg is earlier than 0.9.8g-15+lenny1 AND libssl0.9.8 is earlier than 0.9.8g-15+lenny1 AND openssl is earlier than 0.9.8g-15+lenny1 OR Release section Debian GNU/Linux 4.0 is installed. AND Packages section libssl0.9.7-dbg is earlier than 0.9.7k-3.1etch3 AND libssl-dev is earlier than 0.9.8c-4etch5 AND libssl0.9.8-dbg is earlier than 0.9.8c-4etch5 AND openssl is earlier than 0.9.8c-4etch5 AND libssl0.9.8 is earlier than 0.9.8c-4etch5 AND libssl0.9.7 is earlier than 0.9.7k-3.1etch3

CPE : Common Platform Enumeration

Type	Description	Count
Application	Openssl cpe:2.3:a:openssl:openssl:0.9.7m:::::::* cpe:2.3:a:openssl:openssl:0.9.7m::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7m::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7m::::::x86: cpe:2.3:a:openssl:openssl:0.9.7l:::::::* cpe:2.3:a:openssl:openssl:0.9.7l::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7l::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7l::::::x86: cpe:2.3:a:openssl:openssl:0.9.7k:::::::* cpe:2.3:a:openssl:openssl:0.9.7k::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7k::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7k::::::x86: cpe:2.3:a:openssl:openssl:0.9.7j:::::::* cpe:2.3:a:openssl:openssl:0.9.7j::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7j::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7j::::::x86: cpe:2.3:a:openssl:openssl:0.9.7i:::::::* cpe:2.3:a:openssl:openssl:0.9.7i::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7i::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7i::::::x86: cpe:2.3:a:openssl:openssl:0.9.7h:::::::* cpe:2.3:a:openssl:openssl:0.9.7h::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7h::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7h::::::x86: cpe:2.3:a:openssl:openssl:0.9.7g:::::::* cpe:2.3:a:openssl:openssl:0.9.7g::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7g::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7g::::::x86: cpe:2.3:a:openssl:openssl:0.9.7f:::::::* cpe:2.3:a:openssl:openssl:0.9.7f::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7f::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7f::::::x86: cpe:2.3:a:openssl:openssl:0.9.7e:::::::* cpe:2.3:a:openssl:openssl:0.9.7e::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7e::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7e::::::x86: cpe:2.3:a:openssl:openssl:0.9.7d:::::::* cpe:2.3:a:openssl:openssl:0.9.7d::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7d::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7d::::::x86: cpe:2.3:a:openssl:openssl:0.9.7c:::::::* cpe:2.3:a:openssl:openssl:0.9.7c::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7c::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7c::::::x86: cpe:2.3:a:openssl:openssl:0.9.7b:::::::* cpe:2.3:a:openssl:openssl:0.9.7b::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7b::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7b::::::x86: cpe:2.3:a:openssl:openssl:0.9.7a:::::::* cpe:2.3:a:openssl:openssl:0.9.7a::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7a::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7a::::::x86: cpe:2.3:a:openssl:openssl:0.9.7:beta3:::::: cpe:2.3:a:openssl:openssl:0.9.7:beta1:::::: cpe:2.3:a:openssl:openssl:0.9.7:-:::::: cpe:2.3:a:openssl:openssl:0.9.7:beta5:::::: cpe:2.3:a:openssl:openssl:0.9.7:beta6:::::: cpe:2.3:a:openssl:openssl:0.9.7:beta4:::::: cpe:2.3:a:openssl:openssl:0.9.7:beta2:::::: cpe:2.3:a:openssl:openssl:0.9.7:beta2:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.7:beta4:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.7:beta1:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.7:beta5:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.7:beta3:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.7::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.7:beta6:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.7:beta5:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.7:beta4:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.7:beta6:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.7:beta1:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.7:beta3:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.7:beta2:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.7::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.7::::::x86: cpe:2.3:a:openssl:openssl:0.9.7:beta1:::::x86:* cpe:2.3:a:openssl:openssl:0.9.7:beta2:::::x86:* cpe:2.3:a:openssl:openssl:0.9.7:beta3:::::x86:* cpe:2.3:a:openssl:openssl:0.9.7:beta4:::::x86:* cpe:2.3:a:openssl:openssl:0.9.7:beta5:::::x86:* cpe:2.3:a:openssl:openssl:0.9.7:beta6:::::x86:* cpe:2.3:a:openssl:openssl:0.9.6m:::::::* cpe:2.3:a:openssl:openssl:0.9.6m::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6m::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6m::::::x86: cpe:2.3:a:openssl:openssl:0.9.6l:::::::* cpe:2.3:a:openssl:openssl:0.9.6l::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6l::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6l::::::x86: cpe:2.3:a:openssl:openssl:0.9.6k:::::::* cpe:2.3:a:openssl:openssl:0.9.6k::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6k::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6k::::::x86: cpe:2.3:a:openssl:openssl:0.9.6j:::::::* cpe:2.3:a:openssl:openssl:0.9.6j::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6j::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6j::::::x86: cpe:2.3:a:openssl:openssl:0.9.6i:::::::* cpe:2.3:a:openssl:openssl:0.9.6i::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6i::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6i::::::x86: cpe:2.3:a:openssl:openssl:0.9.6h:::::::* cpe:2.3:a:openssl:openssl:0.9.6h:bogus:::::: cpe:2.3:a:openssl:openssl:0.9.6h::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6h::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6h::::::x86: cpe:2.3:a:openssl:openssl:0.9.6g:::::::* cpe:2.3:a:openssl:openssl:0.9.6g::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6g::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6g::::::x86: cpe:2.3:a:openssl:openssl:0.9.6f:::::::* cpe:2.3:a:openssl:openssl:0.9.6f::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6f::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6f::::::x86: cpe:2.3:a:openssl:openssl:0.9.6e:::::::* cpe:2.3:a:openssl:openssl:0.9.6e::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6e::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6e::::::x86: cpe:2.3:a:openssl:openssl:0.9.6d:-:::::: cpe:2.3:a:openssl:openssl:0.9.6d::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6d::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6d::::::x86: cpe:2.3:a:openssl:openssl:0.9.6c:::::::* cpe:2.3:a:openssl:openssl:0.9.6c::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6c::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6c::::::x86: cpe:2.3:a:openssl:openssl:0.9.6b:::::::* cpe:2.3:a:openssl:openssl:0.9.6b::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6b::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6b::::::x86: cpe:2.3:a:openssl:openssl:0.9.6a:-:::::: cpe:2.3:a:openssl:openssl:0.9.6a:beta2:::::: cpe:2.3:a:openssl:openssl:0.9.6a:beta1:::::: cpe:2.3:a:openssl:openssl:0.9.6a:beta3:::::: cpe:2.3:a:openssl:openssl:0.9.6a:beta2:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.6a::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6a:beta3:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.6a:beta1:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.6a:beta1:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.6a:beta2:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.6a:beta3:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.6a::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6a::::::x86: cpe:2.3:a:openssl:openssl:0.9.6a:beta1:::::x86:* cpe:2.3:a:openssl:openssl:0.9.6a:beta2:::::x86:* cpe:2.3:a:openssl:openssl:0.9.6a:beta3:::::x86:* cpe:2.3:a:openssl:openssl:0.9.6:beta2:::::: cpe:2.3:a:openssl:openssl:0.9.6:-:::::: cpe:2.3:a:openssl:openssl:0.9.6:beta3:::::: cpe:2.3:a:openssl:openssl:0.9.6:beta1:::::: cpe:2.3:a:openssl:openssl:0.9.6:beta2:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.6::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.6:beta1:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.6:beta3:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.6:beta1:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.6:beta3:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.6:beta2:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.6::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.6::::::x86: cpe:2.3:a:openssl:openssl:0.9.6:beta1:::::x86:* cpe:2.3:a:openssl:openssl:0.9.6:beta2:::::x86:* cpe:2.3:a:openssl:openssl:0.9.6:beta3:::::x86:* cpe:2.3:a:openssl:openssl:0.9.5a:beta2:::::: cpe:2.3:a:openssl:openssl:0.9.5a:beta1:::::: cpe:2.3:a:openssl:openssl:0.9.5a:-:::::: cpe:2.3:a:openssl:openssl:0.9.5a:beta2:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.5a::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.5a:beta1:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.5a::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.5a:beta1:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.5a:beta2:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.5a::::::x86: cpe:2.3:a:openssl:openssl:0.9.5a:beta1:::::x86:* cpe:2.3:a:openssl:openssl:0.9.5a:beta2:::::x86:* cpe:2.3:a:openssl:openssl:0.9.5:beta1:::::: cpe:2.3:a:openssl:openssl:0.9.5:-:::::: cpe:2.3:a:openssl:openssl:0.9.5:beta2:::::: cpe:2.3:a:openssl:openssl:0.9.5:beta2:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.5:beta1:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:a:openssl:openssl:0.9.5::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.5:beta1:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.5:beta2:~~~~x86~:::::* cpe:2.3:a:openssl:openssl:0.9.5::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.5::::::x86: cpe:2.3:a:openssl:openssl:0.9.5:beta1:::::x86:* cpe:2.3:a:openssl:openssl:0.9.5:beta2:::::x86:* cpe:2.3:a:openssl:openssl:0.9.4:::::::* cpe:2.3:a:openssl:openssl:0.9.4::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.4::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.4::::::x86: cpe:2.3:a:openssl:openssl:0.9.3a:::::::* cpe:2.3:a:openssl:openssl:0.9.3a::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.3a::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.3a::::::x86: cpe:2.3:a:openssl:openssl:0.9.3:-:::::: cpe:2.3:a:openssl:openssl:0.9.3::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.3::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.3::::::x86: cpe:2.3:a:openssl:openssl:0.9.2b:::::::* cpe:2.3:a:openssl:openssl:0.9.2b::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.2b::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.2b::::::x86: cpe:2.3:a:openssl:openssl:0.9.1c:::::::* cpe:2.3:a:openssl:openssl:0.9.1c::%7E%7E%7E%7Ex86%7E::::: cpe:2.3:a:openssl:openssl:0.9.1c::~~~~x86~::::: cpe:2.3:a:openssl:openssl:0.9.1c::::::x86: cpe:2.3:a:openssl:openssl:0.9.1b:::::::* cpe:2.3:a:openssl:openssl:0.9.0b:::::::* cpe:2.3:a:openssl:openssl:::::::: cpe:2.3:a:openssl:openssl:::openvms:::::* cpe:2.3:a:openssl:openssl:-:::::::*	210
Os	Debian Debian Linux cpe:2.3:o:debian:debian_linux:5.0:::::::* cpe:2.3:o:debian:debian_linux:4.0:::::::*	2

OpenVAS Exploits

Date	Description
2012-04-16	Name : VMSA-2010-0009: ESXi utilities and ESX Service Console third party updates File : nvt/gb_VMSA-2010-0009.nasl
2011-08-09	Name : CentOS Update for openssl CESA-2009:1335 centos5 i386 File : nvt/gb_CESA-2009_1335_openssl_centos5_i386.nasl
2010-03-31	Name : CentOS Update for openssl CESA-2010:0163 centos3 i386 File : nvt/gb_CESA-2010_0163_openssl_centos3_i386.nasl
2010-03-31	Name : CentOS Update for openssl CESA-2010:0163 centos4 i386 File : nvt/gb_CESA-2010_0163_openssl_centos4_i386.nasl
2010-03-31	Name : RedHat Update for openssl RHSA-2010:0163-01 File : nvt/gb_RHSA-2010_0163-01_openssl.nasl
2009-10-13	Name : SLES10: Security update for compat-openssl097g File : nvt/sles10_compat-openssl0.nasl
2009-10-13	Name : SLES10: Security update for OpenSSL File : nvt/sles10_openssl1.nasl
2009-10-13	Name : Solaris Update for sshd 141742-04 File : nvt/gb_solaris_141742_04.nasl
2009-10-13	Name : Solaris Update for sshd 140119-11 File : nvt/gb_solaris_140119_11.nasl
2009-10-11	Name : SLES11: Security update for OpenSSL File : nvt/sles11_libopenssl0_9_8.nasl
2009-10-10	Name : SLES9: Security update for OpenSSL File : nvt/sles9p5048397.nasl
2009-09-23	Name : Solaris Update for sshd 141742-02 File : nvt/gb_solaris_141742_02.nasl
2009-09-23	Name : Solaris Update for sshd 140119-07 File : nvt/gb_solaris_140119_07.nasl
2009-09-23	Name : Solaris Update for sshd 140119-09 File : nvt/gb_solaris_140119_09.nasl
2009-09-21	Name : CentOS Security Advisory CESA-2009:1335 (openssl) File : nvt/ovcesa2009_1335.nasl
2009-09-09	Name : RedHat Security Advisory RHSA-2009:1335 File : nvt/RHSA_2009_1335.nasl
2009-07-17	Name : HP-UX Update for OpenSSL HPSBUX02435 File : nvt/gb_hp_ux_HPSBUX02435.nasl
2009-05-20	Name : SuSE Security Summary SUSE-SR:2009:010 File : nvt/suse_sr_2009_010.nasl
2009-05-11	Name : FreeBSD Ports: FreeBSD File : nvt/freebsd_FreeBSD.nasl
2009-04-28	Name : FreeBSD Security Advisory (FreeBSD-SA-09:08.openssl.asc) File : nvt/freebsdsa_openssl7.nasl
2009-04-15	Name : Debian Security Advisory DSA 1763-1 (openssl) File : nvt/deb_1763_1.nasl
2009-04-15	Name : Gentoo Security Advisory GLSA 200904-08 (openssl) File : nvt/glsa_200904_08.nasl
2009-04-06	Name : Mandrake Security Advisory MDVSA-2009:087 (openssl) File : nvt/mdksa_2009_087.nasl
2009-04-06	Name : Ubuntu USN-749-1 (libsndfile) File : nvt/ubuntu_749_1.nasl
2009-04-06	Name : Ubuntu USN-750-1 (openssl) File : nvt/ubuntu_750_1.nasl
2009-04-02	Name : OpenSSL Multiple Vulnerabilities (Win) File : nvt/gb_openssl_mult_vuln_win.nasl
2009-04-02	Name : OpenSSL Multiple Vulnerabilities (Linux) File : nvt/gb_openssl_mult_vuln_lin.nasl
0000-00-00	Name : Slackware Advisory SSA:2009-098-01 openssl File : nvt/esoft_slk_ssa_2009_098_01.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
62881	SSH Tectia Audit Player ASN1_STRING_print_ex() Function BMPString / Universal...
52864	OpenSSL ASN1_STRING_print_ex() Function BMPString / UniversalString Handling DoS

Nessus® Vulnerability Scanner

Date	Description
2016-03-08	Name : The remote VMware ESX host is missing a security-related patch. File : vmware_VMSA-2010-0019_remote.nasl - Type : ACT_GATHER_INFO
2016-03-08	Name : The remote VMware ESX / ESXi host is missing a security-related patch. File : vmware_VMSA-2010-0009_remote.nasl - Type : ACT_GATHER_INFO
2016-03-08	Name : The remote VMware ESX host is missing a security-related patch. File : vmware_VMSA-2010-0004_remote.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_compat-openssl097g-110721.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_compat-openssl097g-110721.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0163.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1335.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20090902_openssl_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20100325_openssl_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-01-04	Name : The remote server is affected by multiple vulnerabilities. File : openssl_0_9_8k.nasl - Type : ACT_GATHER_INFO
2011-12-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_compat-openssl097g-7645.nasl - Type : ACT_GATHER_INFO
2011-07-28	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_compat-openssl097g-7644.nasl - Type : ACT_GATHER_INFO
2011-07-28	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_compat-openssl097g-110721.nasl - Type : ACT_GATHER_INFO
2010-12-08	Name : The remote VMware ESX host is missing one or more security-related patches. File : vmware_VMSA-2010-0019.nasl - Type : ACT_GATHER_INFO
2010-06-01	Name : The remote VMware ESXi / ESX host is missing one or more security-related pat... File : vmware_VMSA-2010-0009.nasl - Type : ACT_GATHER_INFO
2010-05-11	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0163.nasl - Type : ACT_GATHER_INFO
2010-03-26	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0163.nasl - Type : ACT_GATHER_INFO
2010-03-05	Name : The remote VMware ESX host is missing one or more security-related patches. File : vmware_VMSA-2010-0004.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1335.nasl - Type : ACT_GATHER_INFO
2009-09-24	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libopenssl-devel-090415.nasl - Type : ACT_GATHER_INFO
2009-09-24	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_compat-openssl097g-6170.nasl - Type : ACT_GATHER_INFO
2009-09-24	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_openssl-6179.nasl - Type : ACT_GATHER_INFO
2009-09-24	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_compat-openssl097g-090416.nasl - Type : ACT_GATHER_INFO
2009-09-24	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12397.nasl - Type : ACT_GATHER_INFO
2009-09-11	Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_SecUpd2009-005.nasl - Type : ACT_GATHER_INFO
2009-07-21	Name : The remote openSUSE host is missing a security update. File : suse_11_1_libopenssl-devel-090415.nasl - Type : ACT_GATHER_INFO
2009-07-21	Name : The remote openSUSE host is missing a security update. File : suse_11_1_compat-openssl097g-090416.nasl - Type : ACT_GATHER_INFO
2009-07-21	Name : The remote openSUSE host is missing a security update. File : suse_11_0_libopenssl-devel-090415.nasl - Type : ACT_GATHER_INFO
2009-07-21	Name : The remote openSUSE host is missing a security update. File : suse_11_0_compat-openssl097g-090416.nasl - Type : ACT_GATHER_INFO
2009-05-08	Name : The remote host is missing a security update File : freebsd_pkg_fbc8413f2f7a11de9a3f001b77d09812.nasl - Type : ACT_GATHER_INFO
2009-04-30	Name : The remote openSUSE host is missing a security update. File : suse_compat-openssl097g-6175.nasl - Type : ACT_GATHER_INFO
2009-04-30	Name : The remote openSUSE host is missing a security update. File : suse_libopenssl-devel-6173.nasl - Type : ACT_GATHER_INFO
2009-04-23	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-750-1.nasl - Type : ACT_GATHER_INFO
2009-04-23	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-087.nasl - Type : ACT_GATHER_INFO
2009-04-08	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2009-098-01.nasl - Type : ACT_GATHER_INFO
2009-04-07	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200904-08.nasl - Type : ACT_GATHER_INFO
2009-04-07	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1763.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:28:21	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	7
CPE ID(s)	212
osvdb(s)	2
Openvas Exploit(s)	28
Nessus® Exploit(s)	37

	Related
5	CVE-2009-0590
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

5 - DSA-1763

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU