oval:org.mitre.oval:def:1049
Definition Id: oval:org.mitre.oval:def:1049 | |||
Oval ID: | oval:org.mitre.oval:def:1049 | ||
Title: | Red Hat OpenSSL Kerberos Handshake Vulnerability | ||
Description: | The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2004-0112 | Version: | 2 |
Platform(s): | Red Hat Linux 9 | Product(s): | OpenSSL |
Definition Synopsis: | |||