#VU32588 NULL pointer dereference in OpenSSL - CVE-2013-4353

Cybersecurity Help s.r.o.

Published: 2014-01-09 | Updated: 2020-07-28

Vulnerability identifier: #VU32588

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2013-4353

CWE-ID: CWE-476

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
OpenSSL
Server applications / Encryption software

Vendor: OpenSSL Software Foundation

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error. A remote attacker can trigger denial of service conditions via a crafted Next Protocol Negotiation record in a TLS handshake.

Mitigation
Update to version 1.0.1f.

Vulnerable software versions

OpenSSL: 1.0.1c - 1.0.1

External links
https://git.openssl.org/gitweb/?p=openssl.git;a=blob_plain;f=CHANGES;hb=refs/heads/OpenSSL_1_0_1-stable
https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=197e0ea817ad64820789d86711d55ff50d71f631
https://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html
https://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html
https://lists.opensuse.org/opensuse-updates/2014-01/msg00065.html
https://lists.opensuse.org/opensuse-updates/2014-01/msg00067.html
https://lists.opensuse.org/opensuse-updates/2014-01/msg00070.html
https://rhn.redhat.com/errata/RHSA-2014-0015.html
https://rhn.redhat.com/errata/RHSA-2014-0041.html
https://www.debian.org/security/2014/dsa-2837
https://www.openssl.org/news/vulnerabilities.html
https://www.splunk.com/view/SP-CAAAMB3
https://www.ubuntu.com/usn/USN-2079-1
https://www-01.ibm.com/support/docview.wss?uid=isg400001841
https://www-01.ibm.com/support/docview.wss?uid=isg400001843
https://bugzilla.redhat.com/show_bug.cgi?id=1049058

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM FlashSystem (and TMS RAMSAN) 710, 720, 810, and 820 systems

Multiple vulnerabilities in IBM FlashSystem 840

Gentoo update for OpenSSL

Amazon Linux AMI update for openssl

NULL pointer dereference in openssl (Alpine package)

Slackware Linux update for openssl

NULL pointer dereference in OpenSSL