OpenSSL SSL2 master key buffer overflow

openssl-ssl2-masterkey-bo (9714)

High Risk

Description:

OpenSSL is vulnerable to a buffer overflow, caused by improper handling of SSL2 client master keys. By sending an overly long SSL2 client master key, a remote attacker could overflow a buffer and execute arbitrary code with elevated privileges or cause the system to crash.

Platforms Affected:

• Compaq, OpenVMS
• Debian, Debian Linux 2.2
• Debian, Debian Linux 3.0
• EngardeLinux, Secure Linux
• MandrakeSoft, Mandrake Linux 7.1
• MandrakeSoft, Mandrake Linux 7.2
• MandrakeSoft, Mandrake Linux 8.0 PPC
• MandrakeSoft, Mandrake Linux 8.0
• MandrakeSoft, Mandrake Linux 8.1 IA64
• MandrakeSoft, Mandrake Linux 8.1
• MandrakeSoft, Mandrake Linux 8.2
• MandrakeSoft, Mandrake Linux 8.2 PPC
• MandrakeSoft, Mandrake Linux Corporate Server 1.0.1
• OpenPKG, OpenPKG 1.0
• OpenPKG, OpenPKG CURRENT
• OpenSSL, OpenSSL 0.9.6 Beta3
• OpenSSL, OpenSSL 0.9.6 Beta2
• OpenSSL, OpenSSL 0.9.6
• OpenSSL, OpenSSL 0.9.6 Beta1
• OpenSSL, OpenSSL 0.9.6a
• OpenSSL, OpenSSL 0.9.6a Beta3
• OpenSSL, OpenSSL 0.9.6a Beta2
• OpenSSL, OpenSSL 0.9.6a Beta1
• OpenSSL, OpenSSL 0.9.6b
• OpenSSL, OpenSSL 0.9.6c
• OpenSSL, OpenSSL 0.9.6d
• OpenSSL, OpenSSL 0.9.7
• OpenSSL, OpenSSL 0.9.7 Beta2
• OpenSSL, OpenSSL 0.9.7 Beta1
• Oracle, Application Server 1.0.2.0
• Oracle, Application Server 1.0.2.1
• Oracle, Application Server 1.0.2.2
• RedHat, Enterprise Linux 2.1 AS
• RedHat, Linux 6.2
• RedHat, Linux 7
• RedHat, Linux 7.1
• RedHat, Linux 7.2
• RedHat, Linux 7.3
• Trustix, Secure Linux 1.1
• Trustix, Secure Linux 1.2
• Trustix, Secure Linux 1.5

Remedy:

For vulnerability detection:

Enable the following checks in the ISS Protection Platform:
OpensslSsl2MasterkeyBo
openssl-ssl2-masterkey-bo

For Virtual Patch:

Enable the following checks in the ISS Protection Platform:
SSL2_Master_Key_Overflow

For Manual Protection:

Upgrade to the latest version of OpenSSL (0.9.6e or later), available from the OpenSSL Project Web site. See References.

— OR —

Apply the patch for this vulnerability, available from the OpenSSL Project Web site. See References.

For OpenPKG 1.0:
Upgrade to the latest OpenSSL package (0.9.6b-1.0.1 or later) or (0.9.6e or later), as listed in OpenPKG Security Advisory OpenPKG-SA-2002.008. See References.

For Debian GNU/Linux 3.0:
Upgrade to the latest OpenSSL packages (0.9.4-6 or later), (0.9.5a-6 or later), and (0.9.6c-2 or later), as listed in DSA-136-1. See References.

For EnGarde Secure Linux Community Edition:
Upgrade to the latest OpenSSL package (0.9.6-1.0.16 or later), as listed in EnGarde Secure Linux Security Advisory ESA-20020730-019. See References.

For Trustix Secure Linux:
Upgrade to the latest OpenSSL package, as listed below. Refer to Trustix Secure Linux Security Advisory #2002-0063 for more information. See References.

Trustix 1.1 and 1.2: openssl-0.9.6-3tr or later

Trustix 1.5: openssl-0.9.6-10tr

For Red Hat Linux:
Upgrade to the latest OpenSSL package, as listed below. Refer to RHSA-2002:155-11 for more information. See References.

Red Hat 6.2: openssl-0.9.5a-26 or later

Red Hat 7.0 and 7.1: openssl-0.9.6-10 or later

Red Hat 7.2 and 7.3: openssl096-0.9.6-9 or later

For SuSE Linux:
Upgrade to the latest OpenSSL package, as listed below. Refer to SuSE Security Announcement SuSE-SA:2002:027 for more information. See References.

SuSE Linux 8.0 (Intel): 0.9.6c-78 or later
SuSE Linux 7.3 (Intel): 0.9.6b-147 or later
SuSE Linux 7.1 and 7.2 (Intel): 0.9.6a-63 or later
SuSE Linux 7.0 (Intel): 0.9.5a-59 or later
SuSE Linux 7.3 (Sparc): 0.9.6b-136 or later
SuSE Linux 7.1 (Sparc): 0.9.6a-23 or later
SuSE Linux 7.0 (Sparc): 0.9.5a-8 or later

For Mandrake Linux:
Upgrade to the latest OpenSSL package, as listed below. Refer to MandrakeSoft Security Advisory MDKSA-2002:046 : openssl for more information. See References.

Linux Mandrake 7.1, Corporate Server 1.0.1: 0.9.5a-4.1mdk or later
Linux Mandrake 7.2 and Single Network Firewall 7.2: 0.9.5a-9.1mdk or later
Mandrake Linux 8.0: 0.9.6-8.1mdk or later
Mandrake Linux 8.1: 0.9.6b-1.1mdk or later
Mandrake Linux 8.2: 0.9.6c-2.1mdk or later

For Caldera OpenLinux 3.1 and 3.1.1 Workstation and Server: Upgrade to the latest OpenSSL packages (0.9.6-19 or later), as listed in Caldera International, Inc. Security Advisory CSSA-2002-033.1. See References.

For FreeBSD:
Apply the patch for this vulnerability, as listed in FreeBSD, Inc. Security Advisory FreeBSD-SA-02:33.openssl. See References.

For Compaq/Hewlett-Packard:
Apply SoftPaq SP21932 for this vulnerability, as listed in the Hewlett-Packard Software and Drivers Web page. See References.

For other distributions:
Contact your vendor for upgrade or patch information.

Consequences:

Gain Access

References:

• BugTraq Mailing List, Thu Oct 03 2002 - 14:37:31 CDT , Cisco Secure Content Accelerator vulnerable to SSL worm at http://archives.neohapsis.com/archives/bugtraq/2002-10/0066.html.
• BugTraq Mailing List, Tue Jul 30 2002 - 05:15:00 CDT , OpenSSL patches for other versions at http://archives.neohapsis.com/archives/bugtraq/2002-07/0383.html.
• Caldera International, Inc. Security Advisory CSSA-2002-033.1, REVISED: multiple vulnerabilities in open at ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-033.1.txt.
• Caldera International, Inc. Security Advisory CSSA-2002-033.1, Linux: REVISED: multiple vulnerabilities in openssl at ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2002-033.1.txt.
• CERT Advisory CA-2002-23, Multiple Vulnerabilities In OpenSSL at http://www.cert.org/advisories/CA-2002-23.html.
• CIAC Information Bulletin M-103, Multiple Vulnerabilities in OpenSSL at http://www.ciac.org/ciac/bulletins/m-103.shtml.
• Compaq SECURITY BULLETIN SRB0036W, SSRT2310a HP Tru64 UNIX & HP OpenVMS Potential OpenSSL Security Vulnerability at http://www.auscert.org.au/render.html?it=2375.
• EnGarde Secure Linux Security Advisory ESA-20020730-019, Several vulnerabilities in the openssl library at http://www.linuxsecurity.com/content/view/103987/109/. (From LinuxSecurity.com archive)
• FreeBSD Security Advisory FreeBSD-SA-02:33.openssl, openssl contains multiple vulnerabilities at ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:33.openssl.asc.
• Gentoo Linux Security Announcement 2002-07-30 16:15:00, denial of service / remote root exploit at http://archives.neohapsis.com/archives/bugtraq/2002-07/0388.html. (From Neohapsis archive)
• Hewlett-Packard Software and Drivers Web site, Compaq Remote Insight Lights-Out Edition Firmware (40-Bit SSL) version 2.42 A (4 Mar 03) at http://h18007.www1.hp.com/support/files/server/us/download/17427.html.
• National Infrastructure Protection Center Advisory 02-006, OpenSSL Vulnerability at http://www.nipc.gov/warnings/advisories/2002/02-006.htm.
• OpenSSL Project Web site, OpenSSL: The Open Source toolkit for SSL/TLS at http://www.openssl.org.
• OpenSSL Security Advisory [30 July 2002], Vulnerabilities in OpenSSL versions before 0.9.6e at http://www.openssl.org/news/secadv_20020730.txt.
• Trustix Secure Linux Security Advisory #2002-0063, openssl at http://www.trustix.net/errata/2002/0063/.
• BID-5353: Multiple OpenSSL Remote Buffer Overflow Vulnerabilities
• BID-5362: OpenSSL SSLv3 Session ID Buffer Overflow Vulnerability
• BID-5363: OpenSSL SSLv2 Malformed Client Key Remote Buffer Overflow Vulnerability
• CVE-2002-0656: Buffer overflows in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allow remote attackers to execute arbitrary code via (1) a large client master key in SSL2 or (2) a large session ID in SSL3.
• DSA-136: openssl -- multiple remote exploits
• MDKSA-2002:046: Updated openssl packages fix various vulnerabilities
• MDKSA-2002:046-1: Updated openssl packages fix various vulnerabilities
• OpenPKG-SA-2002.008: OpenSSL
• RHSA-2002-155: Updated openssl packages fix remote vulnerabilities
• RHSA-2002-157: openssl security update
• US-CERT VU#102795: OpenSSL servers contain a buffer overflow during the SSL2 handshake process
• US-CERT VU#258555: OpenSSL clients contain a buffer overflow during the SSL3 handshake process

Reported:

Jul 30, 2002

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page