cbcvebase.
CVE-2003-0078
published 2003-03-03

CVE-2003-0078: ssl3_get_record in s3_pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i does not perform a MAC computation if an incorrect block cipher padding is used…

PriorityP426medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
13.72%
96.0th percentile
ssl3_get_record in s3_pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i does not perform a MAC computation if an incorrect block cipher padding is used, which causes an information leak (timing discrepancy) that may make it easier to launch cryptographic attacks that rely on distinguishing between padding and MAC verification errors, possibly leading to extraction of the original plaintext, aka the "Vaudenay timing attack."

Affected

17 ranges
VendorProductVersion rangeFixed in
debianopenssl< openssl 0.9.7a-1 (bookworm)openssl 0.9.7a-1 (bookworm)
freebsdfreebsd
freebsdfreebsd
freebsdfreebsd
freebsdfreebsd
freebsdfreebsd
freebsdfreebsd
freebsdfreebsd
openbsdopenbsd
openbsdopenbsd
opensslopenssl< 0.9.6i0.9.6i
opensslopenssl
opensslopenssl
opensslopenssl>= 0 < 0.9.7a-10.9.7a-1
opensslopenssl>= 0 < 0.9.7a-10.9.7a-1
opensslopenssl>= 0 < 0.9.7a-10.9.7a-1
opensslopenssl>= 0 < 0.9.7a-10.9.7a-1

CVSS provenance

nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.