CVE-2015-3194

HIGH

OpenSSL <1.0.1q, <1.0.2e - DoS

Title source: llm

Description

crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.

Exploits (1)

nomisec WORKING POC 1 stars

by Trinadh465 · poc

https://github.com/Trinadh465/OpenSSL-1_0_1g_CVE-2015-3194

View Code ZIP pw:eip

References (38)

[Vendor Advisory] https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

[Vendor Advisory] https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=d8541d7e9e63bf5f343af24644046c8d96498c17

[Vendor Advisory] http://openssl.org/news/secadv/20151203.txt

[Third Party Advisory] http://fortiguard.com/advisory/openssl-advisory-december-2015

[Third Party Advisory] http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

[Third Party Advisory] http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761

[Mailing List, Third Party Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173801.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-updates/2015-12/msg00070.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-updates/2015-12/msg00071.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-updates/2015-12/msg00087.html

[Mailing List, Third Party Advisory] http://marc.info/?l=bugtraq&m=145382583417444&w=2

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2015-2617.html

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2016-2957.html

[Third Party Advisory] http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl

[Third Party Advisory] http://www.debian.org/security/2015/dsa-3413

[Third Party Advisory] http://www.fortiguard.com/advisory/openssl-advisory-december-2015

[Patch, Vendor Advisory] http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

[Patch, Vendor Advisory] http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

... and 18 more

Scores

CVSS v3 7.5

EPSS 0.5814

EPSS Percentile 98.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-476

Status draft

Affected Products (30)

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

openssl/openssl

... and 15 more

Timeline

Published Dec 06, 2015

Tracked Since Feb 18, 2026