cbcvebase.
CVE-2014-3512
published 2014-08-13

CVE-2014-3512: Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service…

PriorityP350high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
74.08%
99.4th percentile
Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.

Affected

30 ranges· showing 25
VendorProductVersion rangeFixed in
debianopenssl< openssl 1.0.1i-1 (bookworm)openssl 1.0.1i-1 (bookworm)
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl
opensslopenssl>= 0 < 1.0.1i-11.0.1i-1

Detection & IOCsextracted from sources · hover to see the quote

  • The vulnerability exists in crypto/srp/srp_lib.c within the SRP implementation; focus code review and monitoring on this file path in OpenSSL deployments.
  • Trigger condition is an invalid SRP g, A, or B parameter sent by a remote attacker; monitor for malformed/oversized SRP handshake parameters in TLS traffic as an anomaly indicator.
  • The upstream fix is tracked at a specific git commit; use this to confirm whether a given OpenSSL build includes the patch.
  • ·OpenSSL builds compiled without SRP support enabled are NOT affected; Red Hat Enterprise Linux 5, 6, 7, RHEV 3, and Red Hat Storage 2 ship with SRP disabled and are confirmed not vulnerable.
  • ·Only OpenSSL versions 1.0.1 up to (but not including) 1.0.1i are affected; SRP support was introduced upstream in version 1.0.1, so older versions are not impacted.

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
vendor_ubuntu5.0MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.