xfocus logo xfocus title
首页 焦点原创 安全文摘 安全工具 安全漏洞 焦点项目 焦点论坛 关于我们
English Version
 最近严重漏洞 
Microsoft RPC接口远程任意代码可执行漏洞
Cisco IOS接口不正确处理IPV4包远程拒绝服务漏洞
Microsoft Windows CreateFile API命名管道权限提升漏洞

OpenSSL CBC错误信息泄露漏洞


发布时间:2003-04-09
更新时间:2003-04-09
严重程度:
威胁程度:其它
错误类型:设计错误
利用方式:服务器模式

BUGTRAQ ID:6884
CVE(CAN) ID:CAN-2003-0078

受影响系统
Apple MacOS X 10.2.4                          
FreeBSD FreeBSD 4.2                          
FreeBSD FreeBSD 4.3                          
FreeBSD FreeBSD 4.4                          
FreeBSD FreeBSD 4.5                          
FreeBSD FreeBSD 4.6                          
FreeBSD FreeBSD 4.6.2                        
FreeBSD FreeBSD 4.7 -STABLE                  
FreeBSD FreeBSD 4.7                          
FreeBSD FreeBSD 4.8 -PRERELEASE              
FreeBSD FreeBSD 5.0                          
HP Apache-Based Web Server 1.3.27 .00        
   -HP HP-UX 11.0                            
   -HP HP-UX 11.11                            
   -HP HP-UX 11.20                            
   -HP HP-UX 11.22                            
HP Apache-Based Web Server 2.0.43 .00        
   -HP HP-UX 11.0                            
   -HP HP-UX 11.11                            
   -HP HP-UX 11.20                            
   -HP HP-UX 11.22                            
HP HP-UX Apache-Based Web Server 1.0.00.01    
   -HP HP-UX 11.0                            
   -HP HP-UX 11.11                            
   -HP HP-UX 11.20                            
   -HP HP-UX 11.22                            
OpenBSD OpenBSD 3.1                          
OpenBSD OpenBSD 3.2                          
OpenSSL Project OpenSSL 0.9.1 c              
OpenSSL Project OpenSSL 0.9.2 b              
OpenSSL Project OpenSSL 0.9.3                
OpenSSL Project OpenSSL 0.9.4                
   +Debian Linux 3.0                          
   +OpenBSD OpenBSD 2.6                      
OpenSSL Project OpenSSL 0.9.5 a              
   +Debian Linux 3.0                          
   +HP Secure OS software for Linux 1.0      
   +MandrakeSoft Corporate Server 1.0.1      
   +MandrakeSoft Linux Mandrake 7.1          
   +MandrakeSoft Linux Mandrake 7.2          
   +MandrakeSoft Single Network Firewall 7.2  
   +OpenBSD OpenBSD 2.7                      
   +OpenBSD OpenBSD 2.8                      
   +RedHat Linux 6.2                          
   +RedHat Linux 6.2 alpha                    
   +RedHat Linux 6.2 i386                    
   +RedHat Linux 6.2 sparc                    
   +RedHat Linux 7.0                          
   +RedHat Linux 7.0 alpha                    
   +RedHat Linux 7.0 i386                    
   +RedHat Linux 7.1                          
   +RedHat Linux 7.1 alpha                    
   +RedHat Linux 7.1 i386                    
   +RedHat Linux 7.1 ia64                    
   +RedHat Linux 7.2                          
   +RedHat Linux 7.2 alpha                    
   +RedHat Linux 7.2 i386                    
   +RedHat Linux 7.2 i686                    
   +RedHat Linux 7.2 ia64                    
   +RedHat Linux 7.3 i386                    
   +S.u.S.E. Linux 7.0 alpha                  
   +S.u.S.E. Linux 7.0 i386                  
   +S.u.S.E. Linux 7.0 ppc                    
   +S.u.S.E. Linux 7.0 sparc                  
OpenSSL Project OpenSSL 0.9.5                
   +RedHat Linux 6.2 alpha                    
   +RedHat Linux 6.2 i386                    
   +RedHat Linux 6.2 sparc                    
OpenSSL Project OpenSSL 0.9.6 h              
OpenSSL Project OpenSSL 0.9.6 g              
   +FreeBSD FreeBSD 4.7                      
   +FreeBSD FreeBSD 4.7 -RELEASE              
   +HP Apache-Based Web Server 1.3.27 .00    
   +HP Apache-Based Web Server 2.0.43 .00    
   +HP Webmin-Based Admin 1.0.00.01          
   +NetBSD NetBSD 1.6                        
   +OpenPKG OpenPKG 1.1                      
OpenSSL Project OpenSSL 0.9.6 e              
   +FreeBSD FreeBSD 4.6                      
   +FreeBSD FreeBSD 4.6 -RELEASE              
OpenSSL Project OpenSSL 0.9.6 d              
   +Slackware Linux 8.1                      
OpenSSL Project OpenSSL 0.9.6 c              
   +Conectiva Linux 8.0                      
   +Debian Linux 3.0                          
   +MandrakeSoft Linux Mandrake 8.2          
   +S.u.S.E. Linux 8.0                        
   +S.u.S.E. Linux 8.0 i386                  
OpenSSL Project OpenSSL 0.9.6 b              
   +MandrakeSoft Linux Mandrake 8.1          
   +MandrakeSoft Linux Mandrake 8.1 ia64      
   +OpenBSD OpenBSD 3.0                      
   +OpenBSD OpenBSD 3.1                      
   +RedHat Linux 7.2                          
   +RedHat Linux 7.2 i386                    
   +RedHat Linux 7.2 i686                    
   +RedHat Linux 7.2 ia64                    
   +RedHat Linux 7.3                          
   +RedHat Linux 7.3 i386                    
   +S.u.S.E. Linux 7.3 i386                  
   +S.u.S.E. Linux 7.3 ppc                    
   +S.u.S.E. Linux 7.3 sparc                  
   +S.u.S.E. Linux Connectivity Server        
   +S.u.S.E. Linux Database Server            
   +S.u.S.E. Linux Enterprise Server 7        
   +S.u.S.E. Linux Firewall on CD            
   +S.u.S.E. Office Server                    
   +S.u.S.E. SuSE eMail Server III            
OpenSSL Project OpenSSL 0.9.6 a              
   +Conectiva Linux 7.0                      
   +NetBSD NetBSD 1.5                        
   +NetBSD NetBSD 1.5.1                      
   +NetBSD NetBSD 1.5.2                      
   +NetBSD NetBSD 1.5.3                      
   +S.u.S.E. Linux 7.1                        
   +S.u.S.E. Linux 7.1 alpha                  
   +S.u.S.E. Linux 7.1 ppc                    
   +S.u.S.E. Linux 7.1 sparc                  
   +S.u.S.E. Linux 7.2 i386                  
OpenSSL Project OpenSSL 0.9.6                
   +Caldera OpenLinux Server 3.1              
   +Caldera OpenLinux Server 3.1.1            
   +Caldera OpenLinux Workstation 3.1        
   +Caldera OpenLinux Workstation 3.1.1      
   +Conectiva Linux 6.0                      
   +EnGarde Secure Linux 1.0.1                
   +HP Secure OS software for Linux 1.0      
   +MandrakeSoft Linux Mandrake 8.0          
   +MandrakeSoft Linux Mandrake 8.0 ppc      
   +NetBSD NetBSD 1.5                        
   +NetBSD NetBSD 1.5.1                      
   +NetBSD NetBSD 1.5.2                      
   +NetBSD NetBSD 1.5.3                      
   +NetBSD NetBSD 1.6                        
   +OpenBSD OpenBSD 2.9                      
   +OpenPKG OpenPKG 1.0                      
   +RedHat Linux 7.0 alpha                    
   +RedHat Linux 7.0 i386                    
   +RedHat Linux 7.0 sparc                    
   +RedHat Linux 7.1 alpha                    
   +RedHat Linux 7.1 i386                    
   +RedHat Linux 7.2 alpha                    
   +RedHat Linux 7.2 i386                    
   +RedHat Linux 7.3                          
   +RedHat Linux 7.3 i386                    
   +Trustix Secure Linux 1.1                  
   +Trustix Secure Linux 1.2                  
   +Trustix Secure Linux 1.5                  
OpenSSL Project OpenSSL 0.9.7 beta3          
OpenSSL Project OpenSSL 0.9.7 beta2          
OpenSSL Project OpenSSL 0.9.7 beta1          
OpenSSL Project OpenSSL 0.9.7                
   +FreeBSD FreeBSD 5.0                      
   +OpenBSD OpenBSD 3.2                      
   +OpenPKG OpenPKG 1.2
详细描述
多个SSL的实现存在漏洞,一个处于中间人状态的攻击者通过分析某些操作的时间情况能得到一些敏感信息,这些信息可以使熟练的攻击者最终得到一个密文对应的明文。此漏洞已经在OpenSSL 0.9.6i和0.9.7a版上重现,其他的SSL实现也可能受此漏洞影响。

测试代码
http://omen.vuagnoux.com/omen-1.1.tar.gz

解决方案
厂商已经在新版的软件中修补了此漏洞:
http://www.openssl.org/source/openssl-0.9.6i.tar.gz

相关信息
Brice Canvel, Alain Hiltgen, Serge Vaudenay, Martin Vuagnoux

http://omen.vuagnoux.com/omen.pdf
Copyright © 1998-2003 XFOCUS Team. All Rights Reserved