CVE-2006-3738
published 2006-09-28CVE-2006-3738: Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and…
PriorityP353critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
48.58%
98.7th percentile
Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssl | < openssl 0.9.8c-2 (bookworm) | openssl 0.9.8c-2 (bookworm) |
| debian | openssl | < openssl 0.9.8e-9 (bookworm) | openssl 0.9.8e-9 (bookworm) |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | >= 0 < 0.9.8c-2 | 0.9.8c-2 |
| openssl | openssl | >= 0 < 0.9.8e-9 | 0.9.8e-9 |
| openssl | openssl | >= 0 < 0.9.8c-2 | 0.9.8c-2 |
Detection & IOCsextracted from sources · hover to see the quote
- →Target applications using SSL_get_shared_ciphers() — specifically Exim, MySQL, and the openssl CLI — for exploitation attempts involving an oversized cipher list in the SSL/TLS handshake. ↗
- →Monitor for SSL/TLS handshake packets containing an abnormally long list of ciphers, which is the attack vector for triggering the buffer overflow in SSL_get_shared_ciphers(). ↗
- →The vulnerability is in ssl_lib.c (SSL_get_shared_ciphers function); patch or monitor changes to this file in OpenSSL versions 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d. ↗
- →Note that the fix for CVE-2006-3738 introduced a follow-on off-by-one vulnerability (CVE-2007-5135) in SSL_get_shared_ciphers(); verify patched versions are updated to at least 0.9.7l / 0.9.8d and subsequently to 0.9.8f+ with the CVE-2007-5135 fix. ↗
- ·Red Hat Enterprise Linux 5 ships a backported patch and is not vulnerable, so version-based detection alone may produce false positives on RHEL5 systems. ↗
- ·Cisco ASA/PIX/FWSM contain the OpenSSL libraries but do not use the vulnerable SSL_get_shared_ciphers() code path, so these devices are not exploitable despite containing the library. ↗
- ·The attack impact and exact remote attack vectors are described as 'unspecified' in the CVE; exploitation depends on whether the target application calls SSL_get_shared_ciphers() with attacker-controlled input. ↗
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv10.0CRITICAL
vendor_debian10.0LOW
vendor_redhat10.0CRITICAL
vendor_cisco7.8HIGH
vendor_ubuntu7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jvv3-c5fw-96v6: Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0
ghsa_unreviewed·2022-05-03·CVSS 10.0
CVE-2007-5135 [CRITICAL] GHSA-jvv3-c5fw-96v6: Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0
Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.8 up to 0.9.8f, might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. NOTE: this issue was introduced as a result of a fix for CVE-2006-3738. As of 20071012, it is unknown whether code execution is possible.
GHSA
GHSA-ggxp-7ch8-7mfp: Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0
ghsa_unreviewed·2022-05-03
CVE-2006-3738 [HIGH] CWE-119 GHSA-ggxp-7ch8-7mfp: Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0
Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.
OSV
CVE-2007-5135: Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0
osv·2007-09-27·CVSS 10.0
CVE-2007-5135 [CRITICAL] CVE-2007-5135: Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0
Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.8 up to 0.9.8f, might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. NOTE: this issue was introduced as a result of a fix for CVE-2006-3738. As of 20071012, it is unknown whether code execution is possible.
OSV
CVE-2006-3738: Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0
osv·2006-09-28·CVSS 10.0
CVE-2006-3738 [CRITICAL] CVE-2006-3738: Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0
Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.
BSD
FreeBSD-SA-07:08.openssl: Buffer overflow in OpenSSL SSL_get_shared_ciphers()
bsd_advisories·2007-10-03·CVSS 6.8
CVE-2006-3738 [MEDIUM] FreeBSD-SA-07:08.openssl: Buffer overflow in OpenSSL SSL_get_shared_ciphers()
FreeBSD-SA-07:08.openssl Security Advisory
The FreeBSD Project
Topic: Buffer overflow in OpenSSL SSL_get_shared_ciphers()
Category: contrib
Module: openssl
Announced: 2007-10-03
Credits: Moritz Jodeit
Affects: All FreeBSD releases.
Corrected: 2007-10-03 21:39:43 UTC (RELENG_6, 6.2-STABLE)
2007-10-03 21:40:35 UTC (RELENG_6_2, 6.2-RELEASE-p8)
2007-10-03 21:41:22 UTC (RELENG_6_1, 6.1-RELEASE-p20)
2007-10-03 21:42:00 UTC (RELENG_5, 5.5-STABLE)
2007-10-03 21:42:32 UTC (RELENG_5_5, 5.5-RELEASE-p16)
CVE Name: CVE-2007-5135
For general information regarding FreeBSD Security Advisories,
including descriptions of the fields above, security branches, and the
following sections, please visit .
I. Background
FreeBSD includes software from the OpenSSL Project. The OpenSSL Project is
a collaborative
Red Hat
openssl: SSL_get_shared_ciphers() off-by-one
vendor_redhat·2007-09-27·CVSS 10.0
CVE-2007-5135 [CRITICAL] CWE-193 openssl: SSL_get_shared_ciphers() off-by-one
openssl: SSL_get_shared_ciphers() off-by-one
Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.8 up to 0.9.8f, might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. NOTE: this issue was introduced as a result of a fix for CVE-2006-3738. As of 20071012, it is unknown whether code execution is possible.
Debian
CVE-2007-5135: openssl - Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0...
vendor_debian·2007·CVSS 10.0
CVE-2007-5135 [CRITICAL] CVE-2007-5135: openssl - Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0...
Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.8 up to 0.9.8f, might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. NOTE: this issue was introduced as a result of a fix for CVE-2006-3738. As of 20071012, it is unknown whether code execution is possible.
Scope: local
bookworm: resolved (fixed in 0.9.8e-9)
bullseye: resolved (fixed in 0.9.8e-9)
forky: resolved (fixed in 0.9.8e-9)
sid: resolved (fixed in 0.9.8e-9)
trixie: resolved (fixed in 0.9.8e-9)
Cisco
Multiple Vulnerabilities in OpenSSL Library
vendor_cisco·2006-11-08·CVSS 7.8
CVE-2006-4339 [HIGH] Multiple Vulnerabilities in OpenSSL Library
Multiple Vulnerabilities in OpenSSL Library
This is the Cisco PSIRT response to the multiple security advisories published by The OpenSSL Project. The vulnerabilities are as follows:
RSA Signature Forgery (CVE-2006-4339), described in http://www.openssl.org/news/secadv_20060905.txt
ASN.1 Denial of Service Attacks (CVE-2006-2937, CVE-2006-2940), described in http://www.openssl.org/news/secadv_20060928.txt
SSL_get_shared_ciphers() buffer overflow (CVE-2006-3738), also in http://www.openssl.org/news/secadv_20060928.txt
SSLv2 Client Crash (CVE-2006-4343), also in http://www.openssl.org/news/secadv_20060928.txt
As of this publication, there are no workarounds available for any of these vulnerabilities, but it may be possible to mitigate some of the exposure. This Security Response lists the
Ubuntu
openssl vulnerabilities
vendor_ubuntu·2006-09-29·CVSS 7.8
CVE-2006-2937 [HIGH] openssl vulnerabilities
Title: openssl vulnerabilities
Summary: openssl vulnerabilities
Dr. Henson of the OpenSSL core team and Open Network Security
discovered a mishandled error condition in the ASN.1 parser. By
sending specially crafted packet data, a remote attacker could exploit
this to trigger an infinite loop, which would render the service
unusable and consume all available system memory. (CVE-2006-2937)
Certain types of public key could take disproportionate amounts of
time to process. The library now limits the maximum key exponent size
to avoid Denial of Service attacks. (CVE-2006-2940)
Tavis Ormandy and Will Drewry of the Google Security Team discovered a
buffer overflow in the SSL_get_shared_ciphers() function. By sending
specially crafted packets to applications that use this function (like
Exim
BSD
FreeBSD-SA-06:23.openssl: Multiple problems in crypto(3)
bsd_advisories·2006-09-28·CVSS 7.8
CVE-2006-2937 [HIGH] FreeBSD-SA-06:23.openssl: Multiple problems in crypto(3)
FreeBSD-SA-06:23.openssl Security Advisory
The FreeBSD Project
Topic: Multiple problems in crypto(3)
Category: contrib
Module: openssl
Announced: 2006-09-28
Credits: Dr S N Henson, Tavis Ormandy, Will Drewry
Stephen Kiernan (Juniper SIRT)
Affects: All FreeBSD releases.
Corrected: 2006-09-29 13:44:03 UTC (RELENG_6, 6.2-PRERELEASE)
2006-09-29 13:44:31 UTC (RELENG_6_1, 6.1-RELEASE-p9)
2006-09-29 13:44:45 UTC (RELENG_6_0, 6.0-RELEASE-p14)
2006-09-29 13:45:01 UTC (RELENG_5, 5.5-STABLE)
2006-09-29 13:45:43 UTC (RELENG_5_5, 5.5-RELEASE-p7)
2006-09-29 13:45:59 UTC (RELENG_5_4, 5.4-RELEASE-p21)
2006-09-29 13:46:10 UTC (RELENG_5_3, 5.3-RELEASE-p36)
2006-09-29 13:46:23 UTC (RELENG_4, 4.11-STABLE)
2006-09-29 13:46:41 UTC (RELENG_4_11, 4.11-RELEASE-p24)
CVE Name: CVE-2006-2937, CVE-2006-2940, CVE-200
Red Hat
openssl get_shared_ciphers overflow
vendor_redhat·2006-09-28·CVSS 10.0
CVE-2006-3738 [CRITICAL] openssl get_shared_ciphers overflow
openssl get_shared_ciphers overflow
Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.
Statement: Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
Debian
CVE-2006-3738: openssl - Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0...
vendor_debian·2006·CVSS 10.0
CVE-2006-3738 [CRITICAL] CVE-2006-3738: openssl - Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0...
Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.
Scope: local
bookworm: resolved (fixed in 0.9.8c-2)
bullseye: resolved (fixed in 0.9.8c-2)
forky: resolved (fixed in 0.9.8c-2)
sid: resolved (fixed in 0.9.8c-2)
trixie: resolved (fixed in 0.9.8c-2)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2006-3738 openssl get_shared_ciphers overflow
bugzilla·2008-01-29·CVSS 10.0
CVE-2006-3738 [CRITICAL] CVE-2006-3738 openssl get_shared_ciphers overflow
CVE-2006-3738 openssl get_shared_ciphers overflow
Common Vulnerabilities and Exposures assigned an identifier CVE-2006-3738 to the following vulnerability:
Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.
References:
http://www.securityfocus.com/archive/1/archive/1/470460/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/456546/100/200/threaded
http://www.securityfocus.com/archive/1/archive/1/447318/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/447393/100/0/threaded
http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049715.html
http://www.openssl.org/news/secadv_20060928.txt
http
Bugzilla
CVE-NONE openssl single byte overflow in SSL_get_shared_ciphers
bugzilla·2007-09-25·CVSS 10.0
CVE-2006-3738 [CRITICAL] CVE-NONE openssl single byte overflow in SSL_get_shared_ciphers
CVE-NONE openssl single byte overflow in SSL_get_shared_ciphers
The following upstream commit was made this week:
http://cvs.openssl.org/chngview?cn=16587
This appears to be a single byte overflow, similar to the overflow in
SSL_get_shared_ciphers() fixed by CVE-2006-3738 (but this time limited to a
single NUL overflow).
Discussion:
*** This bug has been marked as a duplicate of 309801 ***
Bugzilla
CVE-2006-3738 OpenSSL issues (CVE-2006-4343, CVE-2006-2940, CVE-2006-2937, CVE-2006-4339)
bugzilla·2006-10-03·CVSS 7.8
CVE-2006-3738 [HIGH] CVE-2006-3738 OpenSSL issues (CVE-2006-4343, CVE-2006-2940, CVE-2006-2937, CVE-2006-4339)
CVE-2006-3738 OpenSSL issues (CVE-2006-4343, CVE-2006-2940, CVE-2006-2937, CVE-2006-4339)
+++ This bug was initially created as a clone of Bug #206940, Bug #207274,
and Bug #207276 +++
Four CVE issues:
-- Two from Bug #206940
1) Buffer Overflow: Tavis Ormandy and Will Drewry of the Google Security
Team discovered a buffer overflow in SSL_get_shared_ciphers utility
function, used by some applications such as exim and mysql. An attacker
could send a list of ciphers that would overrun a buffer. CVE-2006-3738
2) Denial of Service: Tavis Ormandy and Will Drewry of the Google Security
Team discovered a possible DoS in the sslv2 client code. Where a client
application uses OpenSSL to make a SSLv2 connection to a malicious server
that server could cause the client to crash. CVE-2006-4343
-- O
Bugzilla
CVE-2006-3738 OpenSSL issues (CVE-2006-4343)
bugzilla·2006-09-18·CVSS 10.0
CVE-2006-3738 [CRITICAL] CVE-2006-3738 OpenSSL issues (CVE-2006-4343)
CVE-2006-3738 OpenSSL issues (CVE-2006-4343)
Tavis Ormandy and Will Drewry of the Google Security Team discovered a buffer
overflow in SSL_get_shared_ciphers utility function, used by some
applications such as exim and mysql. An attacker could send a list of
ciphers that would overrun a buffer CVE-2006-3738
Tavis Ormandy and Will Drewry of the Google Security Team discovered a
possible DoS in the sslv2 client code. Where a client application uses
OpenSSL to make a SSLv2 connection to a malicious server that server
could cause the client to crash. CVE-2006-4343
EMBARGO until 20060928
Discussion:
Created attachment 136527
Proposed patch CVE-2006-4343
---
Created attachment 136528
Proposed patch CVE-2006-3738
---
removing embargo, public at http://www.openssl.org/news/secadv_20060928
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-007.txt.ascftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.aschttp://docs.info.apple.com/article.html?artnum=304829http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01118771http://issues.rpath.com/browse/RPL-613http://itrc.hp.com/service/cki/docDisplay.do?docId=c00805100http://itrc.hp.com/service/cki/docDisplay.do?docId=c00849540http://kolab.org/security/kolab-vendor-notice-11.txthttp://lists.apple.com/archives/security-announce/2006/Nov/msg00001.htmlhttp://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049715.htmlhttp://marc.info/?l=bugtraq&m=130497311408250&w=2http://openbsd.org/errata.html#openssl2http://openvpn.net/changelog.htmlhttp://secunia.com/advisories/22094http://secunia.com/advisories/22116http://secunia.com/advisories/22130http://secunia.com/advisories/22165http://secunia.com/advisories/22166http://secunia.com/advisories/22172http://secunia.com/advisories/22186http://secunia.com/advisories/22193http://secunia.com/advisories/22207http://secunia.com/advisories/22212http://secunia.com/advisories/22216http://secunia.com/advisories/22220http://secunia.com/advisories/22240http://secunia.com/advisories/22259http://secunia.com/advisories/22260http://secunia.com/advisories/22284http://secunia.com/advisories/22298http://secunia.com/advisories/22330http://secunia.com/advisories/22385http://secunia.com/advisories/22460http://secunia.com/advisories/22487http://secunia.com/advisories/22500http://secunia.com/advisories/22544http://secunia.com/advisories/22626http://secunia.com/advisories/22633http://secunia.com/advisories/22654http://secunia.com/advisories/22758http://secunia.com/advisories/22772http://secunia.com/advisories/22791http://secunia.com/advisories/22799http://secunia.com/advisories/23038http://secunia.com/advisories/23155http://secunia.com/advisories/23280http://secunia.com/advisories/23309http://secunia.com/advisories/23340http://secunia.com/advisories/23680http://secunia.com/advisories/23794http://secunia.com/advisories/23915http://secunia.com/advisories/24930http://secunia.com/advisories/24950http://secunia.com/advisories/25889http://secunia.com/advisories/26329http://secunia.com/advisories/30124http://secunia.com/advisories/30161http://secunia.com/advisories/31492http://security.freebsd.org/advisories/FreeBSD-SA-06:23.openssl.aschttp://security.gentoo.org/glsa/glsa-200610-11.xmlhttp://securitytracker.com/id?1016943http://securitytracker.com/id?1017522http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.676946http://sourceforge.net/project/shownotes.php?release_id=461863&group_id=69227http://sunsolve.sun.com/search/document.do?assetkey=1-26-102668-1http://sunsolve.sun.com/search/document.do?assetkey=1-26-102711-1http://sunsolve.sun.com/search/document.do?assetkey=1-66-201531-1http://support.avaya.com/elmodocs2/security/ASA-2006-220.htmhttp://support.avaya.com/elmodocs2/security/ASA-2006-260.htmhttp://www.cisco.com/en/US/products/hw/contnetw/ps4162/tsd_products_security_response09186a008077af1b.htmlhttp://www.cisco.com/warp/public/707/cisco-sr-20061108-openssl.shtmlhttp://www.debian.org/security/2006/dsa-1185http://www.debian.org/security/2006/dsa-1195http://www.gentoo.org/security/en/glsa/glsa-200612-11.xmlhttp://www.gentoo.org/security/en/glsa/glsa-200805-07.xmlhttp://www.kb.cert.org/vuls/id/547300http://www.mandriva.com/security/advisories?name=MDKSA-2006:172http://www.mandriva.com/security/advisories?name=MDKSA-2006:177http://www.mandriva.com/security/advisories?name=MDKSA-2006:178http://www.novell.com/linux/security/advisories/2006_24_sr.htmlhttp://www.novell.com/linux/security/advisories/2006_58_openssl.htmlhttp://www.openpkg.org/security/advisories/OpenPKG-SA-2006.021-openssl.htmlhttp://www.openssl.org/news/secadv_20060928.txthttp://www.oracle.com/technetwork/topics/security/cpujan2007-101493.htmlhttp://www.osvdb.org/29262http://www.redhat.com/support/errata/RHSA-2006-0695.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0629.htmlhttp://www.securityfocus.com/archive/1/447318/100/0/threadedhttp://www.securityfocus.com/archive/1/447393/100/0/threadedhttp://www.securityfocus.com/archive/1/456546/100/200/threadedhttp://www.securityfocus.com/archive/1/470460/100/0/threadedhttp://www.securityfocus.com/bid/20249http://www.securityfocus.com/bid/22083http://www.serv-u.com/releasenotes/http://www.trustix.org/errata/2006/0054http://www.ubuntu.com/usn/usn-353-1http://www.us-cert.gov/cas/techalerts/TA06-333A.htmlhttp://www.vmware.com/support/esx2/doc/esx-202-200612-patch.htmlhttp://www.vmware.com/support/esx21/doc/esx-213-200612-patch.htmlhttp://www.vmware.com/support/esx25/doc/esx-253-200612-patch.html
+ 150 more references
2006-09-28
Published