CVE-2011-4354

Name of the Vulnerable Software and Affected Versions OpenSSL versions prior to 0.9.8h on 32-bit platforms

Description The issue involves an incorrect modular reduction algorithm in the implementation of the P-256 and P-384 NIST elliptic curves in certain circumstances, specifically with ECDH or ECDHE cipher suites. This allows remote attackers to obtain the private key of a TLS server via multiple handshake attempts.

Recommendations For OpenSSL versions prior to 0.9.8h on 32-bit platforms, update to version 0.9.8h or later to resolve the issue.