Back to search
CVE-2006-3738
Published: Sep 28, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
MDKSA-2006:172
vendor-advisory
x_refsource_MANDRIVA
22212
third-party-advisory
x_refsource_SECUNIA
ADV-2006-4750
vdb-entry
x_refsource_VUPEN
http://www.vmware.com/support/esx21/doc/esx-213-200612-patch.html
x_refsource_CONFIRM
23915
third-party-advisory
x_refsource_SECUNIA
HPSBMA02250
vendor-advisory
x_refsource_HP
1016943
vdb-entry
x_refsource_SECTRACK
23038
third-party-advisory
x_refsource_SECUNIA
2006-0054
vendor-advisory
x_refsource_TRUSTIX
DSA-1195
vendor-advisory
x_refsource_DEBIAN
23309
third-party-advisory
x_refsource_SECUNIA
http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html
x_refsource_CONFIRM
ADV-2006-4401
vdb-entry
x_refsource_VUPEN
USN-353-1
vendor-advisory
x_refsource_UBUNTU
22116
third-party-advisory
x_refsource_SECUNIA
SSRT071304
vendor-advisory
x_refsource_HP
http://support.avaya.com/elmodocs2/security/ASA-2006-260.htm
x_refsource_CONFIRM
GLSA-200612-11
vendor-advisory
x_refsource_GENTOO
VU#547300
third-party-advisory
x_refsource_CERT-VN
22166
third-party-advisory
x_refsource_SECUNIA
RHSA-2006:0695
vendor-advisory
x_refsource_REDHAT
23340
third-party-advisory
x_refsource_SECUNIA
ADV-2006-4314
vdb-entry
x_refsource_VUPEN
22385
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2006:024
vendor-advisory
x_refsource_SUSE
22758
third-party-advisory
x_refsource_SECUNIA
22487
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2006:058
vendor-advisory
x_refsource_SUSE
22772
third-party-advisory
x_refsource_SECUNIA
SSRT071299
vendor-advisory
x_refsource_HP
22165
third-party-advisory
x_refsource_SECUNIA
http://docs.info.apple.com/article.html?artnum=304829
x_refsource_CONFIRM
20060928 [SECURITY] OpenSSL 0.9.8d and 0.9.7l released
mailing-list
x_refsource_FULLDISC
23794
third-party-advisory
x_refsource_SECUNIA
SSRT090208
vendor-advisory
x_refsource_HP
22220
third-party-advisory
x_refsource_SECUNIA
23680
third-party-advisory
x_refsource_SECUNIA
http://openvpn.net/changelog.html
x_refsource_CONFIRM
25889
third-party-advisory
x_refsource_SECUNIA
ADV-2006-4036
vdb-entry
x_refsource_VUPEN
[3.9] 20061007 013: SECURITY FIX: October 7, 2006
vendor-advisory
x_refsource_OPENBSD
30124
third-party-advisory
x_refsource_SECUNIA
22626
third-party-advisory
x_refsource_SECUNIA
22083
vdb-entry
x_refsource_BID
MDKSA-2006:178
vendor-advisory
x_refsource_MANDRIVA
oval:org.mitre.oval:def:9370
vdb-entry
signature
x_refsource_OVAL
ADV-2006-3869
vdb-entry
x_refsource_VUPEN
22544
third-party-advisory
x_refsource_SECUNIA
22298
third-party-advisory
x_refsource_SECUNIA
22130
third-party-advisory
x_refsource_SECUNIA
31492
third-party-advisory
x_refsource_SECUNIA
22284
third-party-advisory
x_refsource_SECUNIA
24930
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0629
vendor-advisory
x_refsource_REDHAT
GLSA-200610-11
vendor-advisory
x_refsource_GENTOO
oval:org.mitre.oval:def:4256
vdb-entry
signature
x_refsource_OVAL
http://issues.rpath.com/browse/RPL-613
x_refsource_CONFIRM
26329
third-party-advisory
x_refsource_SECUNIA
22260
third-party-advisory
x_refsource_SECUNIA
http://www.xerox.com/downloads/usa/en/c/cert_ESSNetwork_XRX07001_v1.pdf
x_refsource_CONFIRM
openssl-sslgetsharedciphers-bo(29237)
vdb-entry
x_refsource_XF
ADV-2007-0343
vdb-entry
x_refsource_VUPEN
ADV-2006-3860
vdb-entry
x_refsource_VUPEN
23280
third-party-advisory
x_refsource_SECUNIA
20060928 rPSA-2006-0175-1 openssl openssl-scripts
mailing-list
x_refsource_BUGTRAQ
SSRT061213
vendor-advisory
x_refsource_HP
http://support.avaya.com/elmodocs2/security/ASA-2006-220.htm
x_refsource_CONFIRM
ADV-2006-4264
vdb-entry
x_refsource_VUPEN
22193
third-party-advisory
x_refsource_SECUNIA
29262
vdb-entry
x_refsource_OSVDB
http://www.vmware.com/support/esx2/doc/esx-202-200612-patch.html
x_refsource_CONFIRM
23155
third-party-advisory
x_refsource_SECUNIA
22799
third-party-advisory
x_refsource_SECUNIA
SSA:2006-272-01
vendor-advisory
x_refsource_SLACKWARE
ADV-2006-4417
vdb-entry
x_refsource_VUPEN
HPSBUX02186
vendor-advisory
x_refsource_HP
HPSBOV02683
vendor-advisory
x_refsource_HP
http://www.serv-u.com/releasenotes/
x_refsource_CONFIRM
20249
vdb-entry
x_refsource_BID
ADV-2006-4443
vdb-entry
x_refsource_VUPEN
30161
third-party-advisory
x_refsource_SECUNIA
http://www.oracle.com/technetwork/topics/security/cpujan2007-101493.html
x_refsource_CONFIRM
http://www.vmware.com/support/esx25/doc/esx-254-200612-patch.html
x_refsource_CONFIRM
GLSA-200805-07
vendor-advisory
x_refsource_GENTOO
22094
third-party-advisory
x_refsource_SECUNIA
22186
third-party-advisory
x_refsource_SECUNIA
22633
third-party-advisory
x_refsource_SECUNIA
http://www.openssl.org/news/secadv_20060928.txt
x_refsource_CONFIRM
http://kolab.org/security/kolab-vendor-notice-11.txt
x_refsource_CONFIRM
ADV-2007-2315
vdb-entry
x_refsource_VUPEN
22500
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2006-11-28
vendor-advisory
x_refsource_APPLE
TA06-333A
third-party-advisory
x_refsource_CERT
22216
third-party-advisory
x_refsource_SECUNIA
ADV-2006-3820
vdb-entry
x_refsource_VUPEN
HPSBUX02174
vendor-advisory
x_refsource_HP
OpenPKG-SA-2006.021
vendor-advisory
x_refsource_OPENPKG
22654
third-party-advisory
x_refsource_SECUNIA
ADV-2007-1401
vdb-entry
x_refsource_VUPEN
102711
vendor-advisory
x_refsource_SUNALERT
SSRT061275
vendor-advisory
x_refsource_HP
20070110 VMware ESX server security updates
mailing-list
x_refsource_BUGTRAQ
20060929 rPSA-2006-0175-2 openssl openssl-scripts
mailing-list
x_refsource_BUGTRAQ
ADV-2006-3936
vdb-entry
x_refsource_VUPEN
22240
third-party-advisory
x_refsource_SECUNIA
22330
third-party-advisory
x_refsource_SECUNIA
http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html
x_refsource_CONFIRM
HPSBTU02207
vendor-advisory
x_refsource_HP
DSA-1185
vendor-advisory
x_refsource_DEBIAN
22207
third-party-advisory
x_refsource_SECUNIA
MDKSA-2006:177
vendor-advisory
x_refsource_MANDRIVA
1017522
vdb-entry
x_refsource_SECTRACK
20061108 Multiple Vulnerabilities in OpenSSL Library
vendor-advisory
x_refsource_CISCO
ADV-2006-3902
vdb-entry
x_refsource_VUPEN
ADV-2007-2783
vdb-entry
x_refsource_VUPEN
20070602 Recent OpenSSL exploits
mailing-list
x_refsource_BUGTRAQ
22259
third-party-advisory
x_refsource_SECUNIA
22460
third-party-advisory
x_refsource_SECUNIA
22791
third-party-advisory
x_refsource_SECUNIA
22172
third-party-advisory
x_refsource_SECUNIA
http://www.vmware.com/support/esx25/doc/esx-253-200612-patch.html
x_refsource_CONFIRM
SSRT061239
vendor-advisory
x_refsource_HP
FreeBSD-SA-06:23
vendor-advisory
x_refsource_FREEBSD
102668
vendor-advisory
x_refsource_SUNALERT
20061108 Multiple Vulnerabilities in OpenSSL library
vendor-advisory
x_refsource_CISCO
24950
third-party-advisory
x_refsource_SECUNIA
201531
vendor-advisory
x_refsource_SUNALERT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now