CVE-2006-3738 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Openssl

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-193 — Off-by-one Error18 documents9 sources

Severity

10.0CRITICALNVD

NVD6.8

EPSS

53.7%

top 2.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openssl Debian Openssl

Timeline

PublishedSep 28

Latest updateMay 3

Description

Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages3 packages

▶debiandebian/openssl< openssl 0.9.8c-2 (bookworm)+1

▶Debianopenssl/openssl< 0.9.8c-2+7

▶NVDopenssl/openssl20 versions+19

Patches

Patch: kolab.org ↗Patch: lists.grok.org.uk ↗Patch: openbsd.org ↗

🔴Vulnerability Details

GHSA

GHSA-jvv3-c5fw-96v6: Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0↗2022-05-03

▶

GHSA

GHSA-ggxp-7ch8-7mfp: Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0↗2022-05-03

▶

OSV

CVE-2007-5135: Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0↗2007-09-27

▶

OSV

CVE-2006-3738: Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0↗2006-09-28

▶

📋Vendor Advisories

BSD

FreeBSD-SA-07:08.openssl: Buffer overflow in OpenSSL SSL_get_shared_ciphers()↗2007-10-03

▶

Red Hat

openssl: SSL_get_shared_ciphers() off-by-one↗2007-09-27

▶

Debian

CVE-2007-5135: openssl - Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 up to 0...↗2007

▶

Cisco

Multiple Vulnerabilities in OpenSSL Library↗2006-11-08

▶

Ubuntu

openssl vulnerabilities↗2006-09-29

▶

💬Community

Bugzilla

CVE-2006-3738 openssl get_shared_ciphers overflow↗2008-01-29

▶

Bugzilla

CVE-NONE openssl single byte overflow in SSL_get_shared_ciphers↗2007-09-25

▶

Bugzilla

CVE-2006-3738 OpenSSL issues (CVE-2006-4343, CVE-2006-2940, CVE-2006-2937, CVE-2006-4339)↗2006-10-03

▶

Bugzilla

CVE-2006-3738 OpenSSL issues (CVE-2006-4343)↗2006-09-18

▶