VDB
SUSE-SU-2016%3A0641-1
SUSE-SU-2016%3A0641-1
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Security update for openssl
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE:Linux Enterprise Module for Legacy 12 | compat-openssl098 | 0, 0 |
| SUSE:Linux Enterprise Server for SAP Applications 12 SP1 | compat-openssl098 | 0, 0 |
| SUSE:Linux Enterprise Desktop 12 | compat-openssl098 | 0, 0 |
| SUSE:Linux Enterprise Desktop 12 SP1 | compat-openssl098 | 0, 0 |
Exploit Intelligence
- A2SV = Auto Scanning to SSL Vulnerability HeartBleed, CCS Injection, SSLv3 POODLE, FREAK... etc Support Vulnerability [CVE-2007-1858] Anonymous Cipher [CVE-2012-4929] CRIME(SPDY) [CVE-2014-0160] CCS Injection [CVE-2014-0224] HeartBleed [CVE-2014-3566] SSLv3 POODLE [CVE-2015-0204] FREAK Attack [CVE-2015-4000] LOGJAM Attack [CVE-2016-0800] SSLv2 DROWN Installation : $ apt update && apt upgrade $ apt install git $ apt install python2 $ apt install python $ git clone https://github.com/hahwul/ a2... (github-poc-repo)
- Performs a testssl.sh test on SSL/TLS port and displays tool output. (nmap-nse)
- Determines whether the server supports SSLv2, what ciphers it supports and tests for CVE-2015-3197, CVE-2016-0703 and CVE-2016-0800 (DROWN) (nmap-nse)
Timeline
- Mar 3, 2016 CVE Published
- Jul 7, 2016 PoC Published
- Apr 11, 2025 PoC Published
- Feb 4, 2026 CVE Updated
References
- https://www.suse.com/support/update/announcement/2016/suse-su-20160641-1/ advisory
- https://bugzilla.suse.com/952871 report
- https://bugzilla.suse.com/963415 report
- https://bugzilla.suse.com/968046 report
- https://bugzilla.suse.com/968048 report
- https://bugzilla.suse.com/968051 report
- https://bugzilla.suse.com/968053 report
- https://bugzilla.suse.com/968374 report
- https://www.suse.com/security/cve/CVE-2015-3197 url
- https://www.suse.com/security/cve/CVE-2016-0702 url
- https://www.suse.com/security/cve/CVE-2016-0703 url
- https://www.suse.com/security/cve/CVE-2016-0704 url
- https://www.suse.com/security/cve/CVE-2016-0797 url
- https://www.suse.com/security/cve/CVE-2016-0799 url
- https://www.suse.com/security/cve/CVE-2016-0800 url