JVN/CVE Demo: Nvdinfos

NVD

Id: 70547
Name: CVE-2004-0079
Description: The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
Reject
CVSS Version: 2
CVSS Score: 5
Severity: Medium
CVSS Base Score: 5
CVSS Impact Subscore: 2.9
CVSS Exploit Subscore: 10
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Pub Date: 2017-07-18
Published: 2004-11-23
Modified Date: 2017-07-10
Seq: 2004-0079

Actions

Related NVD References

Id	NVD Id	NVD No.	Reference	Actions
363579	70547	CVE-2004-0079	FreeBSD-SA-04:05	View
363580	70547	CVE-2004-0079	NetBSD-SA2004-005	View
363581	70547	CVE-2004-0079	SCOSA-2004.10	View
363582	70547	CVE-2004-0079	CLA-2004:834	View
363583	70547	CVE-2004-0079	http://docs.info.apple.com/article.html?artnum=61798	View
363584	70547	CVE-2004-0079	FEDORA-2004-095	View
363585	70547	CVE-2004-0079	APPLE-SA-2005-08-17	View
363586	70547	CVE-2004-0079	APPLE-SA-2005-08-15	View
363587	70547	CVE-2004-0079	http://lists.apple.com/mhonarc/security-announce/msg00045.html	View
363588	70547	CVE-2004-0079	20040317 New OpenSSL releases fix denial of service attacks [17 March 2004]	View
363589	70547	CVE-2004-0079	SSRT4717	View
363590	70547	CVE-2004-0079	oval:org.mitre.oval:def:2621	View
363591	70547	CVE-2004-0079	oval:org.mitre.oval:def:5770	View
363592	70547	CVE-2004-0079	oval:org.mitre.oval:def:870	View
363593	70547	CVE-2004-0079	oval:org.mitre.oval:def:975	View
363594	70547	CVE-2004-0079	oval:org.mitre.oval:def:9779	View
363595	70547	CVE-2004-0079	GLSA-200403-03	View
363596	70547	CVE-2004-0079	57524	View
363597	70547	CVE-2004-0079	http://support.avaya.com/elmodocs2/security/ASA-2005-239.htm	View
363598	70547	CVE-2004-0079	http://support.lexmark.com/index?page=content&id=TE88&locale=EN&userlocale=EN_US	View
363599	70547	CVE-2004-0079	O-101	View
363600	70547	CVE-2004-0079	20040317 Cisco OpenSSL Implementation Vulnerability	View
363601	70547	CVE-2004-0079	DSA-465	View
363602	70547	CVE-2004-0079	VU#288574	View
363603	70547	CVE-2004-0079	ESA-20040317-003	View
363604	70547	CVE-2004-0079	MDKSA-2004:023	View
363605	70547	CVE-2004-0079	SuSE-SA:2004:007	View
363606	70547	CVE-2004-0079	http://www.openssl.org/news/secadv_20040317.txt	View
363607	70547	CVE-2004-0079	FEDORA-2005-1042	View
363608	70547	CVE-2004-0079	RHSA-2004:120	View
363609	70547	CVE-2004-0079	RHSA-2004:121	View
363610	70547	CVE-2004-0079	RHSA-2004:139	View
363611	70547	CVE-2004-0079	RHSA-2005:829	View
363612	70547	CVE-2004-0079	RHSA-2005:830	View
363613	70547	CVE-2004-0079	9899	View
363614	70547	CVE-2004-0079	SSA:2004-077	View
363615	70547	CVE-2004-0079	2004-0012	View
363616	70547	CVE-2004-0079	http://www.uniras.gov.uk/vuls/2004/224012/index.htm	View
363617	70547	CVE-2004-0079	TA04-078A	View
363618	70547	CVE-2004-0079	openssl-dochangecipherspec-dos(15505)	View

Related JVN

Id	Name	Title	Summary	Cveinfo Name	Cveinfo Id	Nvdinfo Name	Nvdinfo Id	Cvssv2	Cvssv3	Jvnurl	Published Date	Last Updated Date	Actions
62745	JVNDB-2004-000086	OpenSSL の do_change_cipher_spec() 関数におけるサービス運用妨害 (DoS) の脆弱性	OpenSSL は、SSL/TLS の実装の不備により、do_change_cipher_spec() 関数において、NULL ポインタが適切に処理されない脆弱性が存在します。	CVE-2004-0079	8506	CVE-2004-0079	70547	5		http://jvndb.jvn.jp/ja/contents/2004/JVNDB-2004-000086.html	2004-03-17	2007-04-01	View

Message	Memory use
Component initialization	1.38 MB
Controller action start	1.49 MB
Controller render start	2.35 MB
View render complete	26.78 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.61
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	273.43
Event: Controller.beforeRender	5.46
» Processing toolbar data	5.37
Rendering View	1072.07
» Event: View.beforeRender	0.02
» Rendering APP/View/Nvdinfos/view.ctp	1034.73
» Event: View.afterRender	0.03
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	24.34
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	6.40
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/nvdinfos/view/70547
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/nvdinfos/view/70547
Remote Port	51247
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	3.148.167.99
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	3.148.167.99
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	3.148.167.99
Unique Id	aBINXCdFdC0hHdgOeInHTgAAAXU
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	3.148.167.99
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	3.148.167.99
Redirect Unique Id	aBINXCdFdC0hHdgOeInHTgAAAXU
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	3.148.167.99
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	3.148.167.99
Redirect Redirect Unique Id	aBINXCdFdC0hHdgOeInHTgAAAXU
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1746013532.069
Request Time	1746013532

NVD

Actions

Related NVD References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files