ssldump RSA key PreMasterSecret buffer overflow
| ssldump-rsa-premastersecret-bo (10086) |  High Risk |
Description:
The ssldump utility is vulnerable to a buffer overflow in the decryption of malformed RSA keys. By sending a malformed RSA key with a "PreMasterSecret" value of more than 48 bytes to a vulnerable system, a remote attacker could overflow a buffer and execute code on the victim's system, if the victim is running ssldump in "decryption" mode at the time of the attack.
Consequences:
Gain Access
Remedy:
Upgrade to the latest version of ssldump (0.9b3 or later), available from the ssldump home page. See References.
References:
- BugTraq Mailing List, Wed Sep 11 2002 - 10:04:09 CDT : Buffer over/underflows in ssldump prior to 0.9b3 .
- ssldump home page: ssldump.
- BID-5690: ssldump PreMasterSecret Buffer Overflow Vulnerability
- CVE-2002-2207: Buffer overflow in ssldump 0.9b2 and earlier, when running in decryption mode, allows remote attackers to execute arbitrary code via a long RSA PreMasterSecret.
Platforms Affected:
- Eric Rescorla ssldump 0.9b2 and prior
- FreeBSD FreeBSD
Reported:
Sep 11, 2002
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net