CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Vulnerability Details : CVE-2004-0079

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
Publish Date : 2004-11-23 Last Update Date : 2010-08-21
Search Twitter   Search YouTube   Search Google

- CVSS Scores & Vulnerability Types

CVSS Score
5.0
Confidentiality Impact None (There is no impact to the confidentiality of the system.)
Integrity Impact None (There is no impact to the integrity of the system)
Availability Impact Partial (There is reduced performance or interruptions in resource availability.)
Access Complexity Low (Specialized access conditions or extenuating circumstances do not exist. Very little knowledge or skill is required to exploit. )
Authentication Not required (Authentication is not required to exploit the vulnerability.)
Gained Access None
Vulnerability Type(s) Denial Of Service
CWE ID CWE id is not defined for this vulnerability

- Vendor Statements

Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
Source: Redhat

- Additional Vendor Supplied Data

Vendor Impact CVSS Score CVSS Vector Report Date Publish Date
Redhat important 2004-03-08 2004-03-17
If you are a vendor and you have additional data which can be automatically imported into our database, please contact admin @ cvedetails.com

- Related OVAL Definitions

Title Definition Id Class Family
Multiple Vendor OpenSSL 0.9.6x, 0.9.7x Null-Pointer DoS Vulnerability oval:org.mitre.oval:def:5770 ios
OpenSSL Denial of Service Vulnerabilities oval:org.mitre.oval:def:2621 unix
Red Hat Enterprise 3 OpenSSL do_change_cipher_spec Function Denial of Service oval:org.mitre.oval:def:870 unix
Red Hat OpenSSL do_change_cipher_spec Function Denial of Service oval:org.mitre.oval:def:975 unix
RHSA-2004:120: openssl security update (Important) oval:com.redhat.rhsa:def:2004120 unix
RHSA-2004:120: openssl security update (Important) oval:com.redhat.rhsa:def:20040120 unix
RHSA-2005:830: openssl096b security update (Moderate) oval:com.redhat.rhsa:def:2005830 unix
RHSA-2005:830: openssl096b security update (Moderate) oval:com.redhat.rhsa:def:20050830 unix
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a... oval:org.mitre.oval:def:9779 unix
OVAL (Open Vulnerability and Assessment Language) definitions define exactly what should be done to verify a vulnerability or a missing patch. Check out the OVAL definitions if you want to learn what you should do to verify a vulnerability.

- Products Affected By CVE-2004-0079

# Product Type Vendor Product Version Update Edition Language
1 Application 4D Webstar 4.0 Version Details Vulnerabilities
2 Application 4D Webstar 5.2 Version Details Vulnerabilities
3 Application 4D Webstar 5.2.1 Version Details Vulnerabilities
4 Application 4D Webstar 5.2.2 Version Details Vulnerabilities
5 Application 4D Webstar 5.2.3 Version Details Vulnerabilities
6 Application 4D Webstar 5.2.4 Version Details Vulnerabilities
7 Application 4D Webstar 5.3 Version Details Vulnerabilities
8 Application 4D Webstar 5.3.1 Version Details Vulnerabilities
9 OS Apple Mac Os X 10.3.3 Version Details Vulnerabilities
10 OS Apple Mac Os X Server 10.3.3 Version Details Vulnerabilities
11 Hardware Avaya Converged Communications Server 2.0 Version Details Vulnerabilities
12 Application Avaya Intuity Audix LX Version Details Vulnerabilities
13 Application Avaya Intuity Audix 5.1.46 Version Details Vulnerabilities
14 Application Avaya Intuity Audix S3210 Version Details Vulnerabilities
15 Application Avaya Intuity Audix S3400 Version Details Vulnerabilities
16 Hardware Avaya S8300 R2.0.0 Version Details Vulnerabilities
17 Hardware Avaya S8300 R2.0.1 Version Details Vulnerabilities
18 Hardware Avaya S8500 R2.0.0 Version Details Vulnerabilities
19 Hardware Avaya S8500 R2.0.1 Version Details Vulnerabilities
20 Hardware Avaya S8700 R2.0.0 Version Details Vulnerabilities
21 Hardware Avaya S8700 R2.0.1 Version Details Vulnerabilities
22 Hardware Avaya Sg200 4.4 Version Details Vulnerabilities
23 Hardware Avaya Sg200 4.31.29 Version Details Vulnerabilities
24 Hardware Avaya Sg203 4.4 Version Details Vulnerabilities
25 Hardware Avaya Sg203 4.31.29 Version Details Vulnerabilities
26 Hardware Avaya Sg208 Version Details Vulnerabilities
27 Hardware Avaya Sg208 4.4 Version Details Vulnerabilities
28 Hardware Avaya SG5 4.2 Version Details Vulnerabilities
29 Hardware Avaya SG5 4.3 Version Details Vulnerabilities
30 Hardware Avaya SG5 4.4 Version Details Vulnerabilities
31 Application Avaya VSU 5 Version Details Vulnerabilities
32 Application Avaya VSU 5X Version Details Vulnerabilities
33 Application Avaya VSU 100 R2.0.1 Version Details Vulnerabilities
34 Application Avaya VSU 500 Version Details Vulnerabilities
35 Application Avaya VSU 10000 R2.0.1 Version Details Vulnerabilities
36 Application Avaya VSU 2000 R2.0.1 Version Details Vulnerabilities
37 Application Avaya VSU 5000 R2.0.1 Version Details Vulnerabilities
38 Application Avaya VSU 7500 R2.0.1 Version Details Vulnerabilities
39 OS Bluecoat Cacheos Ca Sa 4.1.10 Version Details Vulnerabilities
40 OS Bluecoat Cacheos Ca Sa 4.1.12 Version Details Vulnerabilities
41 Hardware Bluecoat Proxysg Version Details Vulnerabilities
42 Application Checkpoint Firewall-1 Vsx-ng-ai Version Details Vulnerabilities
43 Application Checkpoint Firewall-1 2.0 GX Version Details Vulnerabilities
44 Application Checkpoint Firewall-1 Next Generation Fp0 Version Details Vulnerabilities
45 Application Checkpoint Firewall-1 Next Generation Fp1 Version Details Vulnerabilities
46 Application Checkpoint Firewall-1 Next Generation Fp2 Version Details Vulnerabilities
47 Application Checkpoint Provider-1 4.1 SP4 Version Details Vulnerabilities
48 Application Checkpoint Provider-1 4.1 Version Details Vulnerabilities
49 Application Checkpoint Provider-1 4.1 SP1 Version Details Vulnerabilities
50 Application Checkpoint Provider-1 4.1 SP2 Version Details Vulnerabilities
51 Application Checkpoint Provider-1 4.1 SP3 Version Details Vulnerabilities
52 Application Checkpoint Vpn-1 Next Generation Fp0 Version Details Vulnerabilities
53 Application Checkpoint Vpn-1 Next Generation Fp1 Version Details Vulnerabilities
54 Application Checkpoint Vpn-1 Next Generation Fp2 Version Details Vulnerabilities
55 Application Checkpoint Vpn-1 Vsx Ng With Application Intelligence Version Details Vulnerabilities
56 Application Cisco Access Registrar Version Details Vulnerabilities
57 Application Cisco Application And Content Networking Software Version Details Vulnerabilities
58 Hardware Cisco Call Manager Version Details Vulnerabilities
59 Application Cisco Ciscoworks Common Management Foundation 2.1 Version Details Vulnerabilities
60 Application Cisco Ciscoworks Common Services 2.2 Version Details Vulnerabilities
61 Hardware Cisco Content Services Switch 11500 Version Details Vulnerabilities
62 Application Cisco Css Secure Content Accelerator 1.0 Version Details Vulnerabilities
63 Application Cisco Css Secure Content Accelerator 2.0 Version Details Vulnerabilities
64 Application Cisco Css11000 Content Services Switch Version Details Vulnerabilities
65 Hardware Cisco Firewall Services Module Version Details Vulnerabilities
66 Hardware Cisco Firewall Services Module 1.1.2 Version Details Vulnerabilities
67 Hardware Cisco Firewall Services Module 1.1.3 Version Details Vulnerabilities
68 Hardware Cisco Firewall Services Module 1.1 (3.005) Version Details Vulnerabilities
69 Hardware Cisco Firewall Services Module 2.1 (0.208) Version Details Vulnerabilities
70 Hardware Cisco Gss 4480 Global Site Selector Version Details Vulnerabilities
71 Hardware Cisco Gss 4490 Global Site Selector Version Details Vulnerabilities
72 OS Cisco IOS 12.1(11b)e14 Version Details Vulnerabilities
73 OS Cisco IOS 12.1(13)e9 Version Details Vulnerabilities
74 OS Cisco IOS 12.1(19)e1 Version Details Vulnerabilities
75 OS Cisco IOS 12.1(11)e Version Details Vulnerabilities
76 OS Cisco IOS 12.1(11b)e Version Details Vulnerabilities
77 OS Cisco IOS 12.1(11b)e12 Version Details Vulnerabilities
78 OS Cisco IOS 12.2sy Version Details Vulnerabilities
79 OS Cisco IOS 12.2za Version Details Vulnerabilities
80 OS Cisco IOS 12.2(14)sy Version Details Vulnerabilities
81 OS Cisco IOS 12.2(14)sy1 Version Details Vulnerabilities
82 Hardware Cisco Mds 9000 Version Details Vulnerabilities
83 Application Cisco Okena Stormwatch 3.2 Version Details Vulnerabilities
84 OS Cisco Pix Firewall 6.0(4) Version Details Vulnerabilities
85 OS Cisco Pix Firewall 6.0 Version Details Vulnerabilities
86 OS Cisco Pix Firewall 6.0(1) Version Details Vulnerabilities
87 OS Cisco Pix Firewall 6.0(2) Version Details Vulnerabilities
88 OS Cisco Pix Firewall 6.0(3) Version Details Vulnerabilities
89 OS Cisco Pix Firewall 6.0(4.101) Version Details Vulnerabilities
90 OS Cisco Pix Firewall 6.1(3) Version Details Vulnerabilities
91 OS Cisco Pix Firewall 6.1(4) Version Details Vulnerabilities
92 OS Cisco Pix Firewall 6.1(5) Version Details Vulnerabilities
93 OS Cisco Pix Firewall 6.1 Version Details Vulnerabilities
94 OS Cisco Pix Firewall 6.1(1) Version Details Vulnerabilities
95 OS Cisco Pix Firewall 6.1(2) Version Details Vulnerabilities
96 OS Cisco Pix Firewall 6.2(3) Version Details Vulnerabilities
97 OS Cisco Pix Firewall 6.2 Version Details Vulnerabilities
98 OS Cisco Pix Firewall 6.2(1) Version Details Vulnerabilities
99 OS Cisco Pix Firewall 6.2(2) Version Details Vulnerabilities
100 Application Cisco Pix Firewall 6.2.2 .111 Version Details Vulnerabilities
101 OS Cisco Pix Firewall 6.2(3.100) Version Details Vulnerabilities
102 OS Cisco Pix Firewall 6.3 Version Details Vulnerabilities
103 OS Cisco Pix Firewall 6.3(1) Version Details Vulnerabilities
104 OS Cisco Pix Firewall 6.3(2) Version Details Vulnerabilities
105 OS Cisco Pix Firewall 6.3(3.102) Version Details Vulnerabilities
106 OS Cisco Pix Firewall 6.3(3.109) Version Details Vulnerabilities
107 Hardware Cisco Secure Content Accelerator 10000 Version Details Vulnerabilities
108 Application Cisco Threat Response Version Details Vulnerabilities
109 Application Cisco Webns 6.10 Version Details Vulnerabilities
110 Application Cisco Webns 6.10 B4 Version Details Vulnerabilities
111 Application Cisco Webns 7.1 0.1.02 Version Details Vulnerabilities
112 Application Cisco Webns 7.1 0.2.06 Version Details Vulnerabilities
113 Application Cisco Webns 7.2 0.0.03 Version Details Vulnerabilities
114 Application Cisco Webns 7.10 Version Details Vulnerabilities
115 Application Cisco Webns 7.10 .0.06s Version Details Vulnerabilities
116 OS Freebsd Freebsd 4.8 Version Details Vulnerabilities
117 OS Freebsd Freebsd 4.8 Releng Version Details Vulnerabilities
118 OS Freebsd Freebsd 4.9 Version Details Vulnerabilities
119 OS Freebsd Freebsd 5.1 Release Version Details Vulnerabilities
120 OS Freebsd Freebsd 5.1 Releng Version Details Vulnerabilities
121 OS Freebsd Freebsd 5.1 Version Details Vulnerabilities
122 OS Freebsd Freebsd 5.2 Version Details Vulnerabilities
123 OS Freebsd Freebsd 5.2.1 Release Version Details Vulnerabilities
124 Hardware HP Aaa Server Version Details Vulnerabilities
125 Hardware HP Apache-based Web Server 2.0.43.00 Version Details Vulnerabilities
126 Hardware HP Apache-based Web Server 2.0.43.04 Version Details Vulnerabilities
127 OS HP Hp-ux 8.05 Version Details Vulnerabilities
128 OS HP Hp-ux 11.00 Version Details Vulnerabilities
129 OS HP Hp-ux 11.11 Version Details Vulnerabilities
130 OS HP Hp-ux 11.23 Version Details Vulnerabilities
131 Application HP Wbem A.01.05.08 Version Details Vulnerabilities
132 Application HP Wbem A.02.00.00 Version Details Vulnerabilities
133 Application HP Wbem A.02.00.01 Version Details Vulnerabilities
134 Application Lite Speed Technologies Litespeed Web Server 1.0.1 Version Details Vulnerabilities
135 Application Lite Speed Technologies Litespeed Web Server 1.0.2 Version Details Vulnerabilities
136 Application Lite Speed Technologies Litespeed Web Server 1.0.3 Version Details Vulnerabilities
137 Application Lite Speed Technologies Litespeed Web Server 1.1 Version Details Vulnerabilities
138 Application Lite Speed Technologies Litespeed Web Server 1.1.1 Version Details Vulnerabilities
139 Application Lite Speed Technologies Litespeed Web Server 1.2 Rc1 Version Details Vulnerabilities
140 Application Lite Speed Technologies Litespeed Web Server 1.2 Rc2 Version Details Vulnerabilities
141 Application Lite Speed Technologies Litespeed Web Server 1.2.1 Version Details Vulnerabilities
142 Application Lite Speed Technologies Litespeed Web Server 1.2.2 Version Details Vulnerabilities
143 Application Lite Speed Technologies Litespeed Web Server 1.3 Version Details Vulnerabilities
144 Application Lite Speed Technologies Litespeed Web Server 1.3 Rc1 Version Details Vulnerabilities
145 Application Lite Speed Technologies Litespeed Web Server 1.3 Rc2 Version Details Vulnerabilities
146 Application Lite Speed Technologies Litespeed Web Server 1.3 Rc3 Version Details Vulnerabilities
147 Application Lite Speed Technologies Litespeed Web Server 1.3.1 Version Details Vulnerabilities
148 Application Neoteris Instant Virtual Extranet 3.0 Version Details Vulnerabilities
149 Application Neoteris Instant Virtual Extranet 3.1 Version Details Vulnerabilities
150 Application Neoteris Instant Virtual Extranet 3.2 Version Details Vulnerabilities
151 Application Neoteris Instant Virtual Extranet 3.3 Version Details Vulnerabilities
152 Application Neoteris Instant Virtual Extranet 3.3.1 Version Details Vulnerabilities
153 Application Novell Edirectory 8.0 Version Details Vulnerabilities
154 Application Novell Edirectory 8.5 Version Details Vulnerabilities
155 Application Novell Edirectory 8.5.12a Version Details Vulnerabilities
156 Application Novell Edirectory 8.5.27 Version Details Vulnerabilities
157 Application Novell Edirectory 8.6.2 Version Details Vulnerabilities
158 Application Novell Edirectory 8.7 Version Details Vulnerabilities
159 Application Novell Edirectory 8.7.1 Version Details Vulnerabilities
160 Application Novell Edirectory 8.7.1 SP1 Version Details Vulnerabilities
161 Application Novell Imanager 1.5 Version Details Vulnerabilities
162 Application Novell Imanager 2.0 Version Details Vulnerabilities
163 OS Openbsd Openbsd 3.3 Version Details Vulnerabilities
164 OS Openbsd Openbsd 3.4 Version Details Vulnerabilities
165 Application Openssl Openssl 0.9.6i Version Details Vulnerabilities
166 Application Openssl Openssl 0.9.6d Version Details Vulnerabilities
167 Application Openssl Openssl 0.9.6j Version Details Vulnerabilities
168 Application Openssl Openssl 0.9.6e Version Details Vulnerabilities
169 Application Openssl Openssl 0.9.6k Version Details Vulnerabilities
170 Application Openssl Openssl 0.9.6f Version Details Vulnerabilities
171 Application Openssl Openssl 0.9.6g Version Details Vulnerabilities
172 Application Openssl Openssl 0.9.6h Version Details Vulnerabilities
173 Application Openssl Openssl 0.9.6c Version Details Vulnerabilities
174 Application Openssl Openssl 0.9.7 Beta3 Version Details Vulnerabilities
175 Application Openssl Openssl 0.9.7a Version Details Vulnerabilities
176 Application Openssl Openssl 0.9.7b Version Details Vulnerabilities
177 Application Openssl Openssl 0.9.7 Version Details Vulnerabilities
178 Application Openssl Openssl 0.9.7c Version Details Vulnerabilities
179 Application Openssl Openssl 0.9.7 Beta1 Version Details Vulnerabilities
180 Application Openssl Openssl 0.9.7 Beta2 Version Details Vulnerabilities
181 OS Redhat Enterprise Linux 3.0 Enterprise Server Version Details Vulnerabilities
182 OS Redhat Enterprise Linux 3.0 Workstation Server Version Details Vulnerabilities
183 OS Redhat Enterprise Linux 3.0 Advanced Server Version Details Vulnerabilities
184 OS Redhat Enterprise Linux Desktop 3.0 Version Details Vulnerabilities
185 OS Redhat Linux 7.2 Version Details Vulnerabilities
186 OS Redhat Linux 7.3 Version Details Vulnerabilities
187 OS Redhat Linux 8.0 Version Details Vulnerabilities
188 Application Redhat Openssl 0.9.6b-3 I386 Version Details Vulnerabilities
189 Application Redhat Openssl 0.9.6-15 I386 Version Details Vulnerabilities
190 Application Redhat Openssl 0.9.7a-2 I386 Version Details Vulnerabilities
191 Application Redhat Openssl 0.9.7a-2 I386 Dev Version Details Vulnerabilities
192 Application Redhat Openssl 0.9.7a-2 I386 Perl Version Details Vulnerabilities
193 Application RSA Bsafe Ssl-j Sdk 3.0 Version Details Vulnerabilities
194 Application RSA Bsafe Ssl-j Sdk 3.0.1 Version Details Vulnerabilities
195 Application RSA Bsafe Ssl-j Sdk 3.1 Version Details Vulnerabilities
196 OS SCO Openserver 5.0.6 Version Details Vulnerabilities
197 OS SCO Openserver 5.0.7 Version Details Vulnerabilities
198 Hardware Securecomputing Sidewinder 5.2 Version Details Vulnerabilities
199 Hardware Securecomputing Sidewinder 5.2.0.01 Version Details Vulnerabilities
200 Hardware Securecomputing Sidewinder 5.2.0.02 Version Details Vulnerabilities
201 Hardware Securecomputing Sidewinder 5.2.0.03 Version Details Vulnerabilities
202 Hardware Securecomputing Sidewinder 5.2.0.04 Version Details Vulnerabilities
203 Hardware Securecomputing Sidewinder 5.2.1 Version Details Vulnerabilities
204 Hardware Securecomputing Sidewinder 5.2.1.02 Version Details Vulnerabilities
205 Application SGI Propack 2.3 Version Details Vulnerabilities
206 Application SGI Propack 2.4 Version Details Vulnerabilities
207 Application SGI Propack 3.0 Version Details Vulnerabilities
208 Application Stonesoft Servercluster 2.5 Version Details Vulnerabilities
209 Application Stonesoft Servercluster 2.5.2 Version Details Vulnerabilities
210 Application Stonesoft Stonebeat Fullcluster 1 2.0 Version Details Vulnerabilities
211 Application Stonesoft Stonebeat Fullcluster 1 3.0 Version Details Vulnerabilities
212 Application Stonesoft Stonebeat Fullcluster 2.0 Version Details Vulnerabilities
213 Application Stonesoft Stonebeat Fullcluster 2.5 Version Details Vulnerabilities
214 Application Stonesoft Stonebeat Fullcluster 3.0 Version Details Vulnerabilities
215 Application Stonesoft Stonebeat Securitycluster 2.0 Version Details Vulnerabilities
216 Application Stonesoft Stonebeat Securitycluster 2.5 Version Details Vulnerabilities
217 Application Stonesoft Stonebeat Webcluster 2.0 Version Details Vulnerabilities
218 Application Stonesoft Stonebeat Webcluster 2.5 Version Details Vulnerabilities
219 Application Stonesoft Stonegate 1.5.17 Version Details Vulnerabilities
220 Application Stonesoft Stonegate 1.5.18 Version Details Vulnerabilities
221 Application Stonesoft Stonegate 1.6.2 Version Details Vulnerabilities
222 Application Stonesoft Stonegate 1.6.3 Version Details Vulnerabilities
223 Application Stonesoft Stonegate 1.7 Version Details Vulnerabilities
224 Application Stonesoft Stonegate 1.7.1 Version Details Vulnerabilities
225 Application Stonesoft Stonegate 1.7.2 Version Details Vulnerabilities
226 Application Stonesoft Stonegate 2.0.1 Version Details Vulnerabilities
227 Application Stonesoft Stonegate 2.0.4 Version Details Vulnerabilities
228 Application Stonesoft Stonegate 2.0.5 Version Details Vulnerabilities
229 Application Stonesoft Stonegate 2.0.6 Version Details Vulnerabilities
230 Application Stonesoft Stonegate 2.0.7 Version Details Vulnerabilities
231 Application Stonesoft Stonegate 2.0.8 Version Details Vulnerabilities
232 Application Stonesoft Stonegate 2.0.9 Version Details Vulnerabilities
233 Application Stonesoft Stonegate 2.1 Version Details Vulnerabilities
234 Application Stonesoft Stonegate 2.2 Version Details Vulnerabilities
235 Application Stonesoft Stonegate 2.2.1 Version Details Vulnerabilities
236 Application Stonesoft Stonegate 2.2.4 Version Details Vulnerabilities
237 Application Stonesoft Stonegate Vpn Client 1.7 Version Details Vulnerabilities
238 Application Stonesoft Stonegate Vpn Client 1.7.2 Version Details Vulnerabilities
239 Application Stonesoft Stonegate Vpn Client 2.0 Version Details Vulnerabilities
240 Application Stonesoft Stonegate Vpn Client 2.0.7 Version Details Vulnerabilities
241 Application Stonesoft Stonegate Vpn Client 2.0.8 Version Details Vulnerabilities
242 Application Stonesoft Stonegate Vpn Client 2.0.9 Version Details Vulnerabilities
243 Hardware SUN Crypto Accelerator 4000 1.0 Version Details Vulnerabilities
244 Hardware Symantec Clientless Vpn Gateway 4400 5.0 Version Details Vulnerabilities
245 Application Tarantella Tarantella Enterprise 3.20 Version Details Vulnerabilities
246 Application Tarantella Tarantella Enterprise 3.30 Version Details Vulnerabilities
247 Application Tarantella Tarantella Enterprise 3.40 Version Details Vulnerabilities
248 Application Vmware Gsx Server 2.0 Version Details Vulnerabilities
249 Application Vmware Gsx Server 2.0.1 Build 2129 Version Details Vulnerabilities
250 Application Vmware Gsx Server 2.5.1 Version Details Vulnerabilities
251 Application Vmware Gsx Server 2.5.1 Build 5336 Version Details Vulnerabilities
252 Application Vmware Gsx Server 3.0 Build 7592 Version Details Vulnerabilities

- Number Of Affected Versions By Product

Vendor Product Vulnerable Versions
4D Webstar 8
Apple Mac Os X 1
Apple Mac Os X Server 1
Avaya Converged Communications Server 1
Avaya Intuity Audix 4
Avaya S8300 2
Avaya S8500 2
Avaya S8700 2
Avaya Sg200 2
Avaya Sg203 2
Avaya Sg208 2
Avaya SG5 3
Avaya VSU 8
Bluecoat Cacheos Ca Sa 2
Bluecoat Proxysg 1
Checkpoint Firewall-1 5
Checkpoint Provider-1 5
Checkpoint Vpn-1 4
Cisco Access Registrar 1
Cisco Application And Content Networking Software 1
Cisco Call Manager 1
Cisco Ciscoworks Common Management Foundation 1
Cisco Ciscoworks Common Services 1
Cisco Content Services Switch 11500 1
Cisco Css Secure Content Accelerator 2
Cisco Css11000 Content Services Switch 1
Cisco Firewall Services Module 5
Cisco Gss 4480 Global Site Selector 1
Cisco Gss 4490 Global Site Selector 1
Cisco IOS 10
Cisco Mds 9000 1
Cisco Okena Stormwatch 1
Cisco Pix Firewall 22
Cisco Pix Firewall 1
Cisco Secure Content Accelerator 1
Cisco Threat Response 1
Cisco Webns 7
Freebsd Freebsd 8
HP Aaa Server 1
HP Apache-based Web Server 2
HP Hp-ux 4
HP Wbem 3
Lite Speed Technologies Litespeed Web Server 14
Neoteris Instant Virtual Extranet 5
Novell Edirectory 8
Novell Imanager 2
Openbsd Openbsd 2
Openssl Openssl 16
Redhat Enterprise Linux 3
Redhat Enterprise Linux Desktop 1
Redhat Linux 3
Redhat Openssl 5
RSA Bsafe Ssl-j Sdk 3
SCO Openserver 2
Securecomputing Sidewinder 7
SGI Propack 3
Stonesoft Servercluster 2
Stonesoft Stonebeat Fullcluster 5
Stonesoft Stonebeat Securitycluster 2
Stonesoft Stonebeat Webcluster 2
Stonesoft Stonegate 18
Stonesoft Stonegate Vpn Client 6
SUN Crypto Accelerator 4000 1
Symantec Clientless Vpn Gateway 4400 1
Tarantella Tarantella Enterprise 3
Vmware Gsx Server 5

- References For CVE-2004-0079

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-005.txt.asc
NETBSD NetBSD-SA2004-005
http://www.mandriva.com/security/advisories?name=MDKSA-2004:023
MANDRAKE MDKSA-2004:023
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:05.openssl.asc
FREEBSD FreeBSD-SA-04:05
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.10/SCOSA-2004.10.txt
SCO SCOSA-2004.10
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000834
CONECTIVA CLA-2004:834
http://docs.info.apple.com/article.html?artnum=61798 CONFIRM
http://fedoranews.org/updates/FEDORA-2004-095.shtml
FEDORA FEDORA-2004-095
http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
APPLE APPLE-SA-2005-08-17
http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
APPLE APPLE-SA-2005-08-15
http://marc.theaimsgroup.com/?l=bugtraq&m=107953412903636&w=2
BUGTRAQ 20040317 New OpenSSL releases fix denial of service attacks [17 March 2004]
http://lists.apple.com/mhonarc/security-announce/msg00045.html CONFIRM
http://marc.theaimsgroup.com/?l=bugtraq&m=108403806509920&w=2
HP SSRT4717
http://secunia.com/advisories/11139
SECUNIA 11139
http://support.lexmark.com/index?page=content&id=TE88&locale=EN&userlocale=EN_US CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2005-239.htm CONFIRM
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57524
SUNALERT 57524
http://security.gentoo.org/glsa/glsa-200403-03.xml
GENTOO GLSA-200403-03
http://secunia.com/advisories/18247
SECUNIA 18247
http://secunia.com/advisories/17401
SECUNIA 17401
http://secunia.com/advisories/17398
SECUNIA 17398
http://secunia.com/advisories/17381
SECUNIA 17381
http://www.cisco.com/warp/public/707/cisco-sa-20040317-openssl.shtml
CISCO 20040317 Cisco OpenSSL Implementation Vulnerability
http://www.ciac.org/ciac/bulletins/o-101.shtml
CIAC O-101
http://www.linuxsecurity.com/advisories/engarde_advisory-4135.html
ENGARDE ESA-20040317-003
http://www.debian.org/security/2004/dsa-465
DEBIAN DSA-465
http://www.novell.com/linux/security/advisories/2004_07_openssl.html
SUSE SuSE-SA:2004:007
http://www.redhat.com/support/errata/RHSA-2004-120.html
REDHAT RHSA-2004:120
http://www.redhat.com/archives/fedora-announce-list/2005-October/msg00087.html
FEDORA FEDORA-2005-1042
http://www.openssl.org/news/secadv_20040317.txt CONFIRM
http://www.redhat.com/support/errata/RHSA-2004-139.html
REDHAT RHSA-2004:139
http://www.redhat.com/support/errata/RHSA-2004-121.html
REDHAT RHSA-2004:121
http://www.redhat.com/support/errata/RHSA-2005-829.html
REDHAT RHSA-2005:829
http://www.redhat.com/support/errata/RHSA-2005-830.html
REDHAT RHSA-2005:830
http://www.securityfocus.com/bid/9899
BID 9899 OpenSSL Denial of Service Vulnerabilities Release Date:2006-05-05
http://www.trustix.org/errata/2004/0012
TRUSTIX 2004-0012
http://www.slackware.org/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.455961
SLACKWARE SSA:2004-077
http://xforce.iss.net/xforce/xfdb/15505
XF openssl-dochangecipherspec-dos(15505)
http://www.uniras.gov.uk/vuls/2004/224012/index.htm
http://www.kb.cert.org/vuls/id/288574
CERT-VN VU#288574
http://www.us-cert.gov/cas/techalerts/TA04-078A.html
CERT TA04-078A

- Metasploit Modules Related To CVE-2004-0079

There are not any metasploit modules related to this vulnerability (Please visit www.metasploit.com for more information)


CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.