JVN/CVE Demo: Cveinfos

CVE

Id: 14175
CVE No.: CVE-2005-2969
Status: Candidate
Description: The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSL_OP_MSIE_SSLV2_RSA_PADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to use a weaker protocol than needed via a man-in-the-middle attack.
Phase: Assigned (20050919)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
104978	14175	CVE-2005-2969	MISC:http://www-1.ibm.com/support/docview.wss?uid=isg1SSRVHMCHMC_C081516_754	View
104979	14175	CVE-2005-2969	MISC:http://www.juniper.net/support/security/alerts/PSN-2005-12-025.txt	View
104980	14175	CVE-2005-2969	MISC:ftp://ftp.software.ibm.com/pc/pccbbs/pc_servers/dir5.10.3_docs_relnotes.pdf	View
104981	14175	CVE-2005-2969	CONFIRM:http://www.openssl.org/news/secadv_20051011.txt	View
104982	14175	CVE-2005-2969	CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2006-031.htm	View
104983	14175	CVE-2005-2969	CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2006-260.htm	View
104984	14175	CVE-2005-2969	CONFIRM:http://www.hitachi-support.com/security_e/vuls_e/HS06-022_e/01-e.html	View
104985	14175	CVE-2005-2969	CONFIRM:http://www.hitachi-support.com/security_e/vuls_e/HS07-016_e/index-e.html	View
104986	14175	CVE-2005-2969	CONFIRM:https://issues.rpath.com/browse/RPL-1633	View
104987	14175	CVE-2005-2969	APPLE:APPLE-SA-2005-11-29	View
104988	14175	CVE-2005-2969	URL:http://docs.info.apple.com/article.html?artnum=302847	View
104989	14175	CVE-2005-2969	CISCO:20051202 Cisco Security Notice: Response to OpenSSL - Potential SSL 2.0 Rollback	View
104990	14175	CVE-2005-2969	URL:http://www.cisco.com/warp/public/707/cisco-response-20051202-openssl.shtml	View
104991	14175	CVE-2005-2969	DEBIAN:DSA-875	View
104992	14175	CVE-2005-2969	URL:http://www.debian.org/security/2005/dsa-875	View
104993	14175	CVE-2005-2969	DEBIAN:DSA-881	View
104994	14175	CVE-2005-2969	URL:http://www.debian.org/security/2005/dsa-881	View
104995	14175	CVE-2005-2969	DEBIAN:DSA-882	View
104996	14175	CVE-2005-2969	URL:http://www.debian.org/security/2005/dsa-882	View
104997	14175	CVE-2005-2969	FREEBSD:FreeBSD-SA-05:21	View
104998	14175	CVE-2005-2969	HP:HPSBUX02174	View
104999	14175	CVE-2005-2969	URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=c00805100	View
105000	14175	CVE-2005-2969	HP:SSRT061239	View
105001	14175	CVE-2005-2969	URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=c00805100	View
105002	14175	CVE-2005-2969	HP:HPSBUX02186	View
105003	14175	CVE-2005-2969	URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=c00849540	View
105004	14175	CVE-2005-2969	HP:SSRT071299	View
105005	14175	CVE-2005-2969	URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=c00849540	View
105006	14175	CVE-2005-2969	MANDRIVA:MDKSA-2005:179	View
105007	14175	CVE-2005-2969	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:179	View
105008	14175	CVE-2005-2969	REDHAT:RHSA-2005:800	View
105009	14175	CVE-2005-2969	URL:http://www.redhat.com/support/errata/RHSA-2005-800.html	View
105010	14175	CVE-2005-2969	REDHAT:RHSA-2005:762	View
105011	14175	CVE-2005-2969	URL:http://www.redhat.com/support/errata/RHSA-2005-762.html	View
105012	14175	CVE-2005-2969	REDHAT:RHSA-2008:0629	View
105013	14175	CVE-2005-2969	URL:http://www.redhat.com/support/errata/RHSA-2008-0629.html	View
105014	14175	CVE-2005-2969	SUNALERT:101974	View
105015	14175	CVE-2005-2969	URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-101974-1	View
105016	14175	CVE-2005-2969	SUSE:SUSE-SA:2005:061	View
105017	14175	CVE-2005-2969	URL:http://www.novell.com/linux/security/advisories/2005_61_openssl.html	View
105018	14175	CVE-2005-2969	TRUSTIX:TSLSA-2005-0059	View
105019	14175	CVE-2005-2969	URL:http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.html	View
105020	14175	CVE-2005-2969	BID:15647	View
105021	14175	CVE-2005-2969	URL:http://www.securityfocus.com/bid/15647	View
105022	14175	CVE-2005-2969	BID:15071	View
105023	14175	CVE-2005-2969	URL:http://www.securityfocus.com/bid/15071	View
105024	14175	CVE-2005-2969	BID:24799	View
105025	14175	CVE-2005-2969	URL:http://www.securityfocus.com/bid/24799	View
105026	14175	CVE-2005-2969	OVAL:oval:org.mitre.oval:def:11454	View
105027	14175	CVE-2005-2969	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11454	View
105028	14175	CVE-2005-2969	VUPEN:ADV-2005-2710	View
105029	14175	CVE-2005-2969	URL:http://www.vupen.com/english/advisories/2005/2710	View
105030	14175	CVE-2005-2969	VUPEN:ADV-2005-2908	View
105031	14175	CVE-2005-2969	URL:http://www.vupen.com/english/advisories/2005/2908	View
105032	14175	CVE-2005-2969	VUPEN:ADV-2005-2036	View
105033	14175	CVE-2005-2969	URL:http://www.vupen.com/english/advisories/2005/2036	View
105034	14175	CVE-2005-2969	VUPEN:ADV-2005-3002	View
105035	14175	CVE-2005-2969	URL:http://www.vupen.com/english/advisories/2005/3002	View
105036	14175	CVE-2005-2969	VUPEN:ADV-2005-3056	View
105037	14175	CVE-2005-2969	URL:http://www.vupen.com/english/advisories/2005/3056	View
105038	14175	CVE-2005-2969	VUPEN:ADV-2005-2659	View
105039	14175	CVE-2005-2969	URL:http://www.vupen.com/english/advisories/2005/2659	View
105040	14175	CVE-2005-2969	VUPEN:ADV-2006-3531	View
105041	14175	CVE-2005-2969	URL:http://www.vupen.com/english/advisories/2006/3531	View
105042	14175	CVE-2005-2969	VUPEN:ADV-2007-0326	View
105043	14175	CVE-2005-2969	URL:http://www.vupen.com/english/advisories/2007/0326	View
105044	14175	CVE-2005-2969	VUPEN:ADV-2007-0343	View
105045	14175	CVE-2005-2969	URL:http://www.vupen.com/english/advisories/2007/0343	View
105046	14175	CVE-2005-2969	VUPEN:ADV-2007-2457	View
105047	14175	CVE-2005-2969	URL:http://www.vupen.com/english/advisories/2007/2457	View
105048	14175	CVE-2005-2969	SECTRACK:1015032	View
105049	14175	CVE-2005-2969	URL:http://securitytracker.com/id?1015032	View
105050	14175	CVE-2005-2969	SECUNIA:17813	View
105051	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17813	View
105052	14175	CVE-2005-2969	SECUNIA:17888	View
105053	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17888	View
105054	14175	CVE-2005-2969	SECUNIA:18045	View
105055	14175	CVE-2005-2969	URL:http://secunia.com/advisories/18045	View
105056	14175	CVE-2005-2969	SECUNIA:17151	View
105057	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17151	View
105058	14175	CVE-2005-2969	SECUNIA:18165	View
105059	14175	CVE-2005-2969	URL:http://secunia.com/advisories/18165	View
105060	14175	CVE-2005-2969	SECUNIA:18123	View
105061	14175	CVE-2005-2969	URL:http://secunia.com/advisories/18123	View
105062	14175	CVE-2005-2969	SECUNIA:17146	View
105063	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17146	View
105064	14175	CVE-2005-2969	SECUNIA:17153	View
105065	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17153	View
105066	14175	CVE-2005-2969	SECUNIA:17169	View
105067	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17169	View
105068	14175	CVE-2005-2969	SECUNIA:17178	View
105069	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17178	View
105070	14175	CVE-2005-2969	SECUNIA:17180	View
105071	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17180	View
105072	14175	CVE-2005-2969	SECUNIA:17189	View
105073	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17189	View
105074	14175	CVE-2005-2969	SECUNIA:17191	View
105075	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17191	View
105076	14175	CVE-2005-2969	SECUNIA:17210	View
105077	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17210	View
105078	14175	CVE-2005-2969	SECUNIA:17259	View
105079	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17259	View
105080	14175	CVE-2005-2969	SECUNIA:17288	View
105081	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17288	View
105082	14175	CVE-2005-2969	SECUNIA:17335	View
105083	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17335	View
105084	14175	CVE-2005-2969	SECUNIA:17344	View
105085	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17344	View
105086	14175	CVE-2005-2969	SECUNIA:17389	View
105087	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17389	View
105088	14175	CVE-2005-2969	SECUNIA:17409	View
105089	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17409	View
105090	14175	CVE-2005-2969	SECUNIA:17432	View
105091	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17432	View
105092	14175	CVE-2005-2969	SECUNIA:17466	View
105093	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17466	View
105094	14175	CVE-2005-2969	SECUNIA:17589	View
105095	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17589	View
105096	14175	CVE-2005-2969	SECUNIA:17617	View
105097	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17617	View
105098	14175	CVE-2005-2969	SECUNIA:17632	View
105099	14175	CVE-2005-2969	URL:http://secunia.com/advisories/17632	View
105100	14175	CVE-2005-2969	SECUNIA:18663	View
105101	14175	CVE-2005-2969	URL:http://secunia.com/advisories/18663	View
105102	14175	CVE-2005-2969	SECUNIA:19185	View
105103	14175	CVE-2005-2969	URL:http://secunia.com/advisories/19185	View
105104	14175	CVE-2005-2969	SECUNIA:21827	View
105105	14175	CVE-2005-2969	URL:http://secunia.com/advisories/21827	View
105106	14175	CVE-2005-2969	SECUNIA:23280	View
105107	14175	CVE-2005-2969	URL:http://secunia.com/advisories/23280	View
105108	14175	CVE-2005-2969	SECUNIA:23340	View
105109	14175	CVE-2005-2969	URL:http://secunia.com/advisories/23340	View
105110	14175	CVE-2005-2969	SECUNIA:23915	View
105111	14175	CVE-2005-2969	URL:http://secunia.com/advisories/23915	View
105112	14175	CVE-2005-2969	SECUNIA:23843	View
105113	14175	CVE-2005-2969	URL:http://secunia.com/advisories/23843	View
105114	14175	CVE-2005-2969	SECUNIA:25973	View
105115	14175	CVE-2005-2969	URL:http://secunia.com/advisories/25973	View
105116	14175	CVE-2005-2969	SECUNIA:26893	View
105117	14175	CVE-2005-2969	URL:http://secunia.com/advisories/26893	View
105118	14175	CVE-2005-2969	SECUNIA:31492	View
105119	14175	CVE-2005-2969	URL:http://secunia.com/advisories/31492	View
105120	14175	CVE-2005-2969	XF:hitachi-hicommand-security-bypass(35287)	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.48 MB
View render complete	3.12 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.66
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	421.29
Event: Controller.beforeRender	5.42
» Processing toolbar data	5.33
Rendering View	38.57
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	37.31
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.78
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.18
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/14175
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/14175
Remote Port	6240
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.223
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.148.26
Http Via	1.1 squid-proxy-5b5d847c96-7f7gz (squid/6.13)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectharddos	1
Suspectdos	1
X Dostranslated Ip	216.73.216.223
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.223
Unique Id	aOPIPA9Bh1Kx8Slh27-FuQAAAlA
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectharddos	1
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.223
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.223
Redirect Unique Id	aOPIPA9Bh1Kx8Slh27-FuQAAAlA
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectharddos	1
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.223
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.223
Redirect Redirect Unique Id	aOPIPA9Bh1Kx8Slh27-FuQAAAlA
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1759758396.2573
Request Time	1759758396

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files