JSON View XML View

Key Value
MTID M117773
Title OpenSSL Encrypt-Then-Mac Denial of Service
Description A vulnerability in OpenSSL could lead to a denial of service.
Observation A vulnerability in OpenSSL could lead to a denial of service.

The flaw lies in the handshake component of the Encrypt-Then-Mac extension. Successful exploitation could allow a remote attacker to cause a denial of service condition.
Recommendation The vendor has released an update to address the issue:

https://www.openssl.org/news/secadv/20170216.txt
Vendor OpenSSL
Attack Vector Malicious remote network traffic
Importance 7
Impact 4.938243750
Threat Score 5.76
Labels
References
CVECVE-2017-3373
MTIDM117773
CPEs
cpe:/a:openssl:openssl:1.1.0
Created At 2017-02-16 00:00:00 UTC
Updated At 2017-03-03 14:48:55 UTC

Back