VDB
GCVE-VVD-CERTCC-2003-888801
GCVE-VVD-CERTCC-2003-888801
Advisory PublishedCVSS 0.0/10
SSL/TLS implementations that respond distinctively to an incorrect PKCS #1 v1.5 encoded SSL/TLS version number expose the premaster secret to a modified Bleichenbacher attack. An attacker could decrypt a given SSL/TLS session or forge a signature on behalf of a vulnerable application's private RSA key.
Risk Scores
CVSS 2.0
0.0/10
None · AV:--/AC:--/Au:--/C:--/I:--/A:--
certcc-cam
certcc-cam
impact10population15exploitation0widely_known16score_current4.05ease_of_exploitation6
certcc-vrda
certcc-vrda
d1_direct_report1
certcc-cvss-temporal-env
certcc-cvss-temporal-env
temporal_score0remediation_levelNDreport_confidenceNDenvironmental_score0target_distributionNDenvironmental_vectorCDP:ND/TD:ND/CR:ND/IR:ND/AR:ND
Aliases
Transitive aliases
CVE-2002-1375CVE-2002-0840RHSA-2002:243DSA-168VAR-200208-0144BDU:2015-04062GHSA-fhww-cg6g-p27cCVE-2003-0020EUVD-2002-1360RHSA-2003:320RHSA-2002:157DSA-135DSA-188VAR-200303-0010VVD-CERTCC-2003-203897CVE-2002-1233RHSA-2003:102CVE-2003-0147CVE-2003-0543BDU:2015-01378DEBIAN-CVE-2002-0655RHSA-2002:289GSD-2003-0851VVD-CERTCC-2003-434566BDU:2015-04065CVE-2002-1374RHSA-2002:251CVE-2003-0545EUVD-2004-0079BDU:2015-07484DSA-136-3EUVD-2002-0650EUVD-2003-0187GSD-2002-1375DEBIAN-CVE-2002-0392BDU:2015-03282GHSA-3626-95rf-mfw3CVE-2003-0150DEBIAN-CVE-2003-0254CVE-2001-1246DEBIAN-CVE-2003-0020EUVD-2003-0020RHSA-2002:248EUVD-2002-1217CVE-2005-1247RHSA-2003:166GSD-2002-0653EUVD-2002-1359DEBIAN-CVE-2003-0789EUVD-2003-0249VVD-CERTCC-2004-465542CVE-2002-0843VAR-200411-0173EUVD-2003-0069EUVD-2003-0842GSD-2002-0840GHSA-h5gj-xw8w-hmjfBDU:2015-08200DEBIAN-CVE-2003-0132GSD-2003-0542DEBIAN-CVE-2002-0658GSD-2002-0839DEBIAN-CVE-2003-0542GHSA-rf99-cxf6-755hEUVD-2003-0127RHSA-2003:117BDU:2015-08204EUVD-2002-0649VVD-CERTCC-2004-484726GHSA-9jw8-9j6r-p392GHSA-v9gx-6vwh-26c3EUVD-2003-0780CVE-2004-0079CVE-2002-0656GSD-2004-0112RHSA-2002:146CVE-2003-0253CVE-2001-0131VVD-CERTCC-2003-380864VVD-CERTCC-2002-104555CVE-2002-0659RHSA-2002:163RHSA-2003:240GHSA-8phx-r45c-q556CVE-2003-0078CVE-2003-0544EUVD-2003-0537DSA-137BDU:2015-04063GHSA-xcj5-xcx2-vvvvDEBIAN-CVE-2003-0544DEBIAN-CVE-2004-0112CVE-2002-1568RHSA-2003:243DEBIAN-CVE-2002-1568CVE-2003-0073GHSA-cvpf-93m7-95jrDSA-253RHSA-2002:155RHSA-2003:244GSD-2002-0658CVE-2003-0254DSA-181GHSA-xchw-jqmw-jcvcGHSA-cc5w-cgc4-9qf7RHSA-2003:083GSD-2003-0192GHSA-rg25-cp4q-r4c8GHSA-chfp-36fq-v6g3EUVD-2003-0143BDU:2015-08201VVD-CERTCC-2003-549142DSA-195EUVD-2002-0975DSA-288VVD-CERTCC-2002-308891DSA-212EUVD-2005-1250GSD-2002-1373BDU:2015-08203DEBIAN-CVE-2003-0147RHSA-2002:160CVE-2003-0851DSA-303RHSA-2002:103RHSA-2003:116DEBIAN-CVE-2002-0656BDU:2015-08202CVE-2002-0655GSD-2002-0655GSD-2002-0656GHSA-7mfp-q9xp-qq39GHSA-6r62-6x7v-wrm2GSD-2002-1374GHSA-vw24-98xw-c2qvRHSA-2003:104RHSA-2004:120EUVD-2004-0081RHSA-2003:063EUVD-2002-1549EUVD-2002-1357EUVD-2002-1358RHSA-2003:205CVE-2003-0083DEBIAN-CVE-2003-0131BDU:2015-01443DEBIAN-CVE-2002-0659EUVD-2003-0146GSD-2002-0986VAR-200303-0118GHSA-6rjg-j93g-96ppVVD-CERTCC-2002-102795EUVD-2002-0653CVE-2002-1394GHSA-5r59-c396-qwfmBDU:2015-08199BDU:2015-08206GHSA-2x68-h5x4-c4qpcisco-sa-20030930-sslGHSA-ph6p-3j2f-xq2gRHSA-2002:126EUVD-2001-1227CVE-2004-0112EUVD-2003-0074EUVD-2003-0538VAR-200208-0243VVD-CERTCC-2002-748355GHSA-g3vc-c43j-gjjvVVD-CERTCC-2003-206537RHSA-2003:301GSD-2004-0079GHSA-2v5j-pf93-x5xrBDU:2015-04064CVE-2002-1373RHSA-2003:139GSD-2003-0078GHSA-qqh8-wx7x-qgh9EUVD-2003-0539EUVD-2002-0651RHSA-2002:136CVE-2002-1157RHSA-2002:153VVD-CERTCC-2002-944335RHSA-2002:129DEBIAN-CVE-2003-0078EUVD-2004-0112GHSA-2qc3-wjjq-65hvEUVD-2002-0831RHSA-2003:101VAR-200411-0172RHSA-2002:184CVE-2002-0658DEBIAN-CVE-2003-0253DSA-187EUVD-2002-0835RHSA-2002:118GSD-2002-1233BDU:2015-08198RHSA-2004:119GSD-2003-0545RHSA-2002:154EUVD-2001-0131BDU:2015-07478GHSA-5cfw-vgxw-pqxmEUVD-2003-0536GHSA-7pf5-hfgr-ch72GSD-2003-0131RHSA-2003:106GHSA-4wcr-f6x9-g539GSD-2002-0985RHSA-2004:121DSA-394RHSA-2002:193GSD-2005-1247EUVD-2002-0652GHSA-36m7-hm82-xm8qRHSA-2003:082VAR-200311-0091RHSA-2002:288RHSA-2002:117DEBIAN-CVE-2002-0840DSA-136-2VAR-200208-0244GHSA-8v5p-2cpv-c2x6GSD-2002-0657DEBIAN-CVE-2003-0083RHSA-2003:062GHSA-v3q3-83mw-m54rEUVD-2002-0832DEBIAN-CVE-2004-0079BDU:2015-07476DEBIAN-CVE-2003-0545GHSA-gvcx-q88q-m695EUVD-2003-0079RHSA-2003:290VAR-200411-0171VVD-CERTCC-2002-258555RHSA-2004:015RHSA-2003:093RHSA-2002:150EUVD-2022-1681DEBIAN-CVE-2003-0192GSD-2001-0131cisco-sa-20040317-opensslGHSA-4352-7f73-983cDSA-136EUVD-2003-0128VVD-CERTCC-2003-412478CVE-2002-0392GHSA-6hh5-x52p-p482CVE-2002-0985DSA-393GHSA-3x2f-268g-8hg7VAR-200312-0218RHSA-2002:134EUVD-2002-1144CVE-2004-0081RHSA-2002:164GSD-2002-0843GHSA-m2h2-rm4v-5p5xCVE-2002-0986EUVD-2002-0974VVD-CERTCC-2003-997481BDU:2015-08208GHSA-mmjc-3g2p-897mCVE-2003-0789CVE-2002-0839EUVD-2003-0248VVD-CERTCC-2002-240329GSD-2002-0659VVD-CERTCC-2003-935264CVE-2002-1376CVE-2002-0657RHSA-2003:158GHSA-v5cr-9693-q9cgGHSA-42vq-2xjj-6g8wEUVD-2002-0647BDU:2015-07479DSA-136-1DEBIAN-CVE-2003-0543CVE-2003-0192DEBIAN-CVE-2004-0081RHSA-2002:161CVE-2003-0542CVE-2002-0653RHSA-2003:075VVD-CERTCC-2002-561275GHSA-p3wx-7ggv-j5vxBDU:2015-08205BDU:2015-08207VVD-CERTCC-2003-255484CVE-2003-0132DEBIAN-CVE-2002-0657VVD-CISA-2004-0079DSA-465RHSA-2003:405RHSA-2002:244GHSA-4q57-g9fh-w67xGHSA-pcwf-qwvv-qjg3GSD-2004-0081RHSA-2002:135EUVD-2002-0389GHSA-39rv-383r-32wpRHSA-2003:159GSD-2003-0147VVD-CERTCC-2004-288574RHSA-2003:360DSA-225RHSA-2003:094GHSA-mq68-g7rr-6m25RHSA-2004:139
References
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
SSL/TLS implementations disclose side channel information via PKCS #1 v1.5 version number extension
url
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.