CVE-2014-3569Improper Input Validation in Openssl

CWE-20Improper Input ValidationCWE-310CWE-399CWE-476NULL Pointer Dereference20 documents11 sources
Severity
5.0MEDIUMNVD
OSV4.3
EPSS
7.6%
top 8.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
OpensslDebian OpensslApple OS X Yosemite V10.10.3 AND Security Update 2015-004+1 more
Timeline
PublishedDec 24
Latest updateJan 11

Description

The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected handshake, as demonstrated by an SSLv3 handshake to a no-ssl3 application with certain error handling. NOTE: this issue became relevant after the CVE-2014-3568 fix.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages5 packages

debiandebian/openssl< openssl 1.0.1k-1 (bookworm)
Debianopenssl/openssl< 1.0.1k-1+3
NVDopenssl/openssl1.0.1j

🔴Vulnerability Details

2
GHSA
GHSA-66cr-qxrv-fpg2: The ssl23_get_client_hello function in s23_srvr2022-05-17
OSV
CVE-2014-3569: The ssl23_get_client_hello function in s23_srvr2014-12-24

📋Vendor Advisories

13
Cisco
Multiple Vulnerabilities in OpenSSL (January 2015) Affecting Cisco Products2015-03-10
BSD
FreeBSD-SA-15:01.openssl: OpenSSL multiple vulnerabilities2015-01-14
Red Hat
openssl: denial of service in ssl23_get_client_hello function2014-10-21
Debian
CVE-2014-3569: openssl - The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, an...2014
Cisco
Multiple Vulnerabilities in OpenSSL (January 2015) Affecting Cisco Products

🕵️Threat Intelligence

1
Tenable
[R3] LCE 5.0.0 Fixes Multiple Third-party Library Vulnerabilities2017-01-31

📄Research Papers

2
arXiv
Cross-Inlining Binary Function Similarity Detection2024-01-11
arXiv
RoBin: Facilitating the Reproduction of Configuration-Related Vulnerability2021-10-25

💬Community

1
Bugzilla
CVE-2014-3569 openssl: denial of service in ssl23_get_client_hello function2014-12-25