#VU41414 Buffer overflow in OpenSSL - CVE-2014-3512

Cybersecurity Help s.r.o.

Published: 2014-08-14 | Updated: 2020-08-10

Vulnerability identifier: #VU41414

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2014-3512

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
OpenSSL
Server applications / Encryption software

Vendor: OpenSSL Software Foundation

Description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.

Mitigation
Install update from vendor's website.

Vulnerable software versions

OpenSSL: 1.0.0k - 1.0.0, 1.0.1c - 1.0.1

External links
https:ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc
https://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc
https://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html
https://marc.info/?l=bugtraq&m=142660345230545&w=2
https://secunia.com/advisories/59700
https://secunia.com/advisories/59710
https://secunia.com/advisories/59756
https://secunia.com/advisories/60022
https://secunia.com/advisories/60221
https://secunia.com/advisories/60493
https://secunia.com/advisories/60803
https://secunia.com/advisories/60810
https://secunia.com/advisories/60917
https://secunia.com/advisories/60921
https://secunia.com/advisories/61017
https://secunia.com/advisories/61100
https://secunia.com/advisories/61171
https://secunia.com/advisories/61184
https://secunia.com/advisories/61775
https://secunia.com/advisories/61959
https://security.gentoo.org/glsa/glsa-201412-39.xml
https://support.f5.com/kb/en-us/solutions/public/15000/500/sol15565.html
https://www.debian.org/security/2014/dsa-2998
https://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm
https://www.securityfocus.com/bid/69083
https://www.securitytracker.com/id/1030693
https://www.tenable.com/security/tns-2014-06
https://www-01.ibm.com/support/docview.wss?uid=nas8N1020240
https://www-01.ibm.com/support/docview.wss?uid=swg21682293
https://www-01.ibm.com/support/docview.wss?uid=swg21683389
https://www-01.ibm.com/support/docview.wss?uid=swg21686997
https://exchange.xforce.ibmcloud.com/vulnerabilities/95158
https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=4a23b12a031860253b58d503f296377ca076427b
https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html
https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc
https://www.openssl.org/news/secadv_20140806.txt

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in HP Insight Control for Linux CMS Preboot Execution Environment

Gentoo update for OpenSSL

Multiple vulnerabilities in OpenSSL

Slackware Linux update for openssl

Amazon Linux AMI update for openssl