Support Content Notification - Support Portal

SA11 : OpenSSL Vulnerability CAN-2004-0081

Product/Component

Notification Id

1024

Last Updated

02 June 2020

Initial Publication Date

23 March 2003

Status

CLOSED

Severity

HIGH

CVSS Base Score

WorkAround

Affected CVE

SUMMARY

Some Blue Coat Products use versions of OpenSSL that are vulnerable to an attack where unknown message types are not handled properly. The attacks can be aimed at any service on the appliance that is terminating (acting as a host for) an SSL connection.

ISSUES

A successful attack will result in a restart of CA/SA and SG appliances, which can lead to a denial of service situation.

MITIGATION

Restricting access to the secure management console port to trusted IP addresses may reduce exposure.

REFERENCES

https://www.kb.cert.org/vuls/id/465542