CVE-2008-7270

critical

Description

OpenSSL before 0.9.8j, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is enabled, does not prevent modification of the ciphersuite in the session cache, which allows remote attackers to force the use of a disabled cipher via vectors involving sniffing network traffic to discover a session identifier, a different vulnerability than CVE-2010-4180.

References

https://bugzilla.redhat.com/show_bug.cgi?id=659462

http://www.securityfocus.com/bid/45254

http://www.securityfocus.com/archive/1/522176

http://www.redhat.com/support/errata/RHSA-2011-0896.html

http://www.redhat.com/support/errata/RHSA-2010-0978.html

http://www.redhat.com/support/errata/RHSA-2010-0977.html

http://ubuntu.com/usn/usn-1029-1

http://secunia.com/advisories/42493

http://marc.info/?l=bugtraq&m=132077688910227&w=2

http://cvs.openssl.org/chngview?cn=17489

Details

Source: Mitre, NVD

Published: 2010-12-06

Updated: 2012-04-06

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical