SA13 : OpenSSL Vulnerability CAN-2004-0079

1039

03 March 2020

22 March 2004

CLOSED

HIGH

SUMMARY

 

Some Blue Coat Products use versions of OpenSSL that are vulnerable to an attack during cipher suite negotiation. The attacks can be aimed at any service on the appliance that is terminating (acting as a host for) an SSL connection.

ISSUES

 

A successful attack will result in a restart of CA/SA and SG appliances, which can lead to a denial of service situation.

MITIGATION

 

Restricting access to the secure management console port to trusted IP addresses may reduce exposure.

REFERENCES

 

https://www.openssl.org/news/secadv/20040317.txt