Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2003-0078 — Observable Discrepancy in Openssl

CWE-203 — Observable Discrepancy CWE-208 — Observable Timing Discrepancy10 documents8 sources

Severity

5.0MEDIUMNVD

EPSS

13.1%

top 5.88%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Openssl Debian Openssl Freebsd +1 more

Timeline

PublishedMar 3

Latest updateMay 3

Description

ssl3_get_record in s3_pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i does not perform a MAC computation if an incorrect block cipher padding is used, which causes an information leak (timing discrepancy) that may make it easier to launch cryptographic attacks that rely on distinguishing between padding and MAC verification errors, possibly leading to extraction of the original plaintext, aka the "Vaudenay timing attack."

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages4 packages

▶debiandebian/openssl< openssl 0.9.7a-1 (bookworm)

▶NVDopenssl/openssl< 0.9.6i+2

▶Debianopenssl/openssl< 0.9.7a-1+3

▶NVDopenbsd/openbsd3.1, 3.2+1

Also affects: Freebsd 4.2, 4.3, 4.4, 4.5, 4.6, 4.7, 5.0

Patches

Patch: www.openssl.org ↗Patch: www.openssl.org ↗

🔴Vulnerability Details

GHSA

GHSA-2x68-h5x4-c4qp: ssl3_get_record in s3_pkt↗2022-05-03

▶

OSV

CVE-2003-0078: ssl3_get_record in s3_pkt↗2003-03-03

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows XP/Vista/2003/2008 - WMI Service Isolation Privilege Escalation↗2009-04-14

▶

Exploit-DB

OpenSSL 0.9.x - CBC Error Information Leakage↗2003-02-19

▶

📋Vendor Advisories

Red Hat

security flaw↗2003-02-19

▶

Debian

CVE-2003-0078: openssl - ssl3_get_record in s3_pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i do...↗2003

▶

📐Framework References

CWE

Observable Timing Discrepancy↗

▶

CWE

Observable Discrepancy↗

▶

💬Community

Bugzilla

CVE-2003-0078 security flaw↗2018-08-16

▶