CVE-2003-0078
First published: Mon Mar 03 2003(Updated: )
ssl3_get_record in s3_pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i does not perform a MAC computation if an incorrect block cipher padding is used, which causes an information leak (timing discrepancy) that may make it easier to launch cryptographic attacks that rely on distinguishing between padding and MAC verification errors, possibly leading to extraction of the original plaintext, aka the "Vaudenay timing attack."
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| OpenSSL | <0.9.6i | |
| OpenSSL | =0.9.6i | |
| OpenSSL | =0.9.7 | |
| OpenSSL | =0.9.7-beta1 | |
| OpenSSL | =0.9.7-beta2 | |
| OpenSSL | =0.9.7-beta3 | |
| OpenSSL | =0.9.7-beta4 | |
| OpenSSL | =0.9.7-beta5 | |
| OpenSSL | =0.9.7-beta6 | |
| FreeBSD Kernel | =4.2 | |
| FreeBSD Kernel | =4.3 | |
| FreeBSD Kernel | =4.4 | |
| FreeBSD Kernel | =4.5 | |
| FreeBSD Kernel | =4.6 | |
| FreeBSD Kernel | =4.7 | |
| FreeBSD Kernel | =5.0 | |
| OpenBSD | =3.1 | |
| OpenBSD | =3.2 | |
| OpenSSL | =0.9.3 | |
| OpenSSL | =0.9.6d | |
| OpenSSL | =0.9.1c | |
| OpenSSL | =0.9.6 | |
| OpenSSL | =0.9.6a | |
| OpenSSL | =0.9.4 | |
| OpenSSL | =0.9.5a | |
| OpenSSL | =0.9.2b | |
| OpenSSL | =0.9.6b | |
| OpenSSL | =0.9.6c | |
| OpenSSL | =0.9.6e | |
| OpenSSL | =0.9.7 | |
| OpenSSL | =0.9.5 | |
| OpenSSL | =0.9.6g | |
| OpenSSL | =0.9.6h | |
| FreeBSD Kernel | =4.8-pre-release |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000570
- http://marc.info/?l=bugtraq&m=104567627211904&w=2
- http://marc.info/?l=bugtraq&m=104568426824439&w=2
- http://marc.info/?l=bugtraq&m=104577183206905&w=2
- http://www.ciac.org/ciac/bulletins/n-051.shtml
- http://www.debian.org/security/2003/dsa-253
- http://www.iss.net/security_center/static/11369.php
- http://www.linuxsecurity.com/advisories/engarde_advisory-2874.html
- http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:020
- http://www.openssl.org/news/secadv_20030219.txt
- http://www.osvdb.org/3945
- http://www.redhat.com/support/errata/RHSA-2003-062.html
- http://www.redhat.com/support/errata/RHSA-2003-063.html
- http://www.redhat.com/support/errata/RHSA-2003-082.html
- http://www.redhat.com/support/errata/RHSA-2003-104.html
- http://www.redhat.com/support/errata/RHSA-2003-205.html
- http://www.securityfocus.com/bid/6884
- http://www.trustix.org/errata/2003/0005
Frequently Asked Questions
What is the severity of CVE-2003-0078?
The vulnerability CVE-2003-0078 is categorized as a moderate severity issue primarily due to the risk of cryptographic attacks.
How do I fix CVE-2003-0078?
To fix CVE-2003-0078, you should upgrade OpenSSL to version 0.9.7a or later to ensure proper MAC computation.
Which versions of OpenSSL are affected by CVE-2003-0078?
CVE-2003-0078 affects OpenSSL versions before 0.9.7a and prior to 0.9.6i.
What types of attacks could be launched due to CVE-2003-0078?
CVE-2003-0078 may facilitate cryptographic attacks that rely on timing discrepancies caused by incorrect block cipher padding.
Is CVE-2003-0078 still a concern for current systems?
While CVE-2003-0078 is an older vulnerability, it remains a concern for any systems still running affected versions of OpenSSL.
- agent/references
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/severity
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- agent/author
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-index
- vendor/openssl
- canonical/openssl
- version/openssl/0.9.6i
- version/openssl/0.9.7
- version/openssl/0.9.7-beta1
- version/openssl/0.9.7-beta2
- version/openssl/0.9.7-beta3
- version/openssl/0.9.7-beta4
- version/openssl/0.9.7-beta5
- version/openssl/0.9.7-beta6
- vendor/freebsd
- canonical/freebsd kernel
- version/freebsd kernel/4.2
- version/freebsd kernel/4.3
- version/freebsd kernel/4.4
- version/freebsd kernel/4.5
- version/freebsd kernel/4.6
- version/freebsd kernel/4.7
- version/freebsd kernel/5.0
- vendor/openbsd
- canonical/openbsd
- version/openbsd/3.1
- version/openbsd/3.2
- version/openssl/0.9.3
- version/openssl/0.9.6d
- version/openssl/0.9.1c
- version/openssl/0.9.6
- version/openssl/0.9.6a
- version/openssl/0.9.4
- version/openssl/0.9.5a
- version/openssl/0.9.2b
- version/openssl/0.9.6b
- version/openssl/0.9.6c
- version/openssl/0.9.6e
- version/openssl/0.9.5
- version/openssl/0.9.6g
- version/openssl/0.9.6h
- version/freebsd kernel/4.8-pre-release