PT-2012-1868 · Openssl · Openssl
Vincent Danen
·
Published
2012-01-27
·
Updated
2012-11-06
·
CVE-2011-4354
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
OpenSSL versions prior to 0.9.8h on 32-bit platforms
Description
The issue involves an incorrect modular reduction algorithm in the implementation of the P-256 and P-384 NIST elliptic curves in certain circumstances, specifically with ECDH or ECDHE cipher suites. This allows remote attackers to obtain the private key of a TLS server via multiple handshake attempts.
Recommendations
For OpenSSL versions prior to 0.9.8h on 32-bit platforms, update to version 0.9.8h or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Openssl