Red Hat Customer Portal

Skip to main content

CVE-2004-0081

OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.

Details Source

Mitre

Public Date

2004-03-17 00:00:00

Impact

Low

CVSS Status

draft

Red Hat Security Errata

Platform Errata Release Date
Red Hat Stronghold 4 RHSA-2004:139 2004-03-17
Red Hat Enterprise Linux 2.1 RHSA-2004:119 2004-03-17
Red Hat Enterprise Linux 3 RHSA-2004:120 2004-03-17
Red Hat Linux 9 RHSA-2004:121 2004-03-17

Affected Packages State

Platform Package State
Red Hat Enterprise Linux version 3 openssl096b 0.9.6b-16 Fixed
Red Hat Enterprise Linux version 3 openssl 0.9.7a-33.4 Fixed