The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H4d Webstar
APP4D4.05.25.2.15.2.25.2.35.2.45.35.3.1Apple Mac Os X
OSApple10.3.3Apple Mac Os X Server
OSApple10.3.3Avaya Converged Communications Server
HWAvaya2.0Avaya Intuity Audix
APPAvaya5.1.46s3210s3400Avaya Sg200
HWAvaya4.31.294.4Avaya Sg203
HWAvaya4.31.294.4Avaya Sg208
HWAvaya4.4Avaya Sg5
HWAvaya4.24.34.4Avaya Vsu
APPAvaya10000_r2.0.1100_r2.0.12000_r2.0.155005000_r2.0.15x7500_r2.0.1Checkpoint Firewall 1
APPCheckpoint2.0next_generation_fp0next_generation_fp1next_generation_fp2Checkpoint Provider 1
APPCheckpoint4.1Checkpoint Vpn 1
APPCheckpointnext_generation_fp0next_generation_fp1next_generation_fp2vsx_ng_with_application_intelligenceCisco Access Registrar
APPCiscowszystkie wersjeCisco Application And Content Networking Software
APPCiscowszystkie wersjeCisco Ciscoworks Common Management Foundation
APPCisco2.1Cisco Ciscoworks Common Services
APPCisco2.2Cisco Css11000 Content Services Switch
APPCiscowszystkie wersjeCisco Css Secure Content Accelerator
APPCisco1.02.0Cisco Firewall Services Module
HWCisco1.1.21.1.31.1_\(3.005\)2.1_\(0.208\)Cisco IOS
OSCisco12.1\(11b\)e12.1\(11b\)e1212.1\(11b\)e1412.1\(11\)e12.1\(13\)e912.1\(19\)e112.2\(14\)sy12.2\(14\)sy112.2sy12.2zaCisco Okena Stormwatch
APPCisco3.2Cisco Pix Firewall
APPCisco6.2.2_.111Cisco Threat Response
APPCiscowszystkie wersjeCisco Webns
APPCisco6.106.10_b47.107.10_.0.06s7.1_0.1.027.1_0.2.067.2_0.0.03Dell Bsafe Ssl J
APPDell3.03.0.13.1Freebsd
OSFreebsd4.84.95.15.25.2.1HP Aaa Server
HWHpwszystkie wersjeHP Apache Based Web Server
HWHp2.0.43.002.0.43.04HP Ux
OSHp11.0011.1111.238.05
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
DoS
References
Related vulnerabilities
CVE-2025-32463CRITICAL9.3⚠ KEVPL ✓ten sam produkt
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
CVE-2021-40438CRITICAL9.0⚠ KEVten sam produkt
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remot...
CVE-2021-1871CRITICAL9.8⚠ KEVten sam produkt
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Up...
CVE-2021-1870CRITICAL9.8⚠ KEVten sam produkt
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Up...
CVE-2019-5544CRITICAL9.8⚠ KEVten sam produkt
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the s...