Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The SSL and TLS components for OpenSSL 0.9.6i and earlier, 0.9.7, and 0.9.7a allow remote attackers to perform an unauthorized RSA private key operation via a modified Bleichenbacher attack that uses a large number of SSL or TLS connections using PKCS #1 v1.5 padding that cause OpenSSL to leak information regarding the relationship between ciphertext and the associated plaintext, aka the "Klima-Pokorny-Rosa attack."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenSSL错误版本数据库旁路攻击法漏洞
Vulnerability Description
OpenSSL 0.9.6i及其更早版本以及0.9.7和0.9.7a版本的SSL和TLS组件存在漏洞。远程攻击者可以借助改进的Bleichenbacher攻击执行未认证RSA私钥操作,该攻击使用了大量PKCS #1 v1.5填充的SSL或TLS连接,可能导致OpenSSL泄露密文和相关纯文本之间的消息,也称为“Klima-Pokorny-Rosa attack”。
CVSS Information
N/A
Vulnerability Type
N/A