TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

931

932

933

934

935

936

937

938

939

940

ProCurve TMS zl Module IPS/IDS Signature

Reference Guide Version RLX.10.2.2.94

940

Signature ID: 35425

Cisco OpenSSL Implementation Vulnerability

Threat Level: Warning

Industry ID: CVE-2004-0079 Bugtraq: 9899

Signature Description: Secure Sockets Layer (SSL) is a protocol used to encrypt the data transferred over a TCP

session. OpenSSL is (OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c) vulnerable to a denial of service Caused by a NULL-pointer

assignment in the "do_change_cipher_spec()" function. A remote attacker can send a specially-crafted handshake to

server that uses the OpenSSL library to cause OpenSSL to crash. This signature detects on service ldap protocol over

TLS/SSL on TCP Port 636.

Signature ID: 35426

Cisco OpenSSL Implementation Vulnerability

Threat Level: Warning

Industry ID: CVE-2004-0079 Bugtraq: 9899

Signature Description: Secure Sockets Layer (SSL) is a protocol used to encrypt the data transferred over a TCP

session. OpenSSL is (OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c) vulnerable to a denial of service Caused by a NULL-pointer

assignment in the "do_change_cipher_spec()" function. A remote attacker can send a specially-crafted handshake to

server that uses the OpenSSL library to cause OpenSSL to crash. This signature detects on service CORBA IIOP SSL

on TCP Port 684.

Signature ID: 35427

Cisco OpenSSL Implementation Vulnerability

Threat Level: Warning

Industry ID: CVE-2004-0079 Bugtraq: 9899

Signature Description: Secure Sockets Layer (SSL) is a protocol used to encrypt the data transferred over a TCP

session. OpenSSL is (OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c) vulnerable to a denial of service Caused by a NULL-pointer

assignment in the "do_change_cipher_spec()" function. A remote attacker can send a specially-crafted handshake to

server that uses the OpenSSL library to cause OpenSSL to crash. This signature detects on service IEEE-MMS-SSL on

TCP Port 695.

Signature ID: 35428

Cisco OpenSSL Implementation Vulnerability

Threat Level: Warning

Industry ID: CVE-2004-0079

Bugtraq: 9899

Signature Description: Secure Sockets Layer (SSL) is a protocol used to encrypt the data transferred over a TCP

session. OpenSSL is (OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c) vulnerable to a denial of service Caused by a NULL-pointer

assignment in the "do_change_cipher_spec()" function. A remote attacker can send a specially-crafted handshake to

server that uses the OpenSSL library to cause OpenSSL to crash. This signature detects on service ftp protocol, data,

over TLS/SSL on TCP Port 989.

Signature ID: 35429

Cisco OpenSSL Implementation Vulnerability

Threat Level: Warning

Industry ID: CVE-2004-0079

Bugtraq: 9899

Signature Description: Secure Sockets Layer (SSL) is a protocol used to encrypt the data transferred over a TCP

session. OpenSSL is (OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c) vulnerable to a denial of service Caused by a NULL-pointer

assignment in the "do_change_cipher_spec()" function. A remote attacker can send a specially-crafted handshake to