[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Cisco] Schwachstellen in OpenSSL betreffen verschiedene Cisco Produkte - cisco-sr-20061108-openssl
-----BEGIN PGP SIGNED MESSAGE-----
Liebe Kolleginnen und Kollegen,
soeben erreichte uns nachfolgende Warnung von Ciscos Product Security
Incident Response Team (PSIRT). Wir geben diese Informationen
unveraendert an Sie weiter.
Verschiedene Cisco Produkte benutzen die OpenSSL Bibliothek oder daraus
entnommenen Code.
CVE-2006-4339 / CVE-2006-4340 / CVE-2006-4790 / MFSA 2006-60 -
Schwachstelle beim Ueberpruefen von RSA Signaturen
Einige X.509 Implementierungen ueberpruefen in einer RSA Signatur
nicht ausreichend, ob auf den Hashwert innerhalb des PKCS.1 Felds noch
weitere Daten folgen. Ein Angreifer kann diese Schwachstelle
ausnutzen, um Daten, welche eine gefaelschte Signatur besitzen, als
korrekt signiert verifizieren zu lassen.
Die Schwachstelle CVE-2006-4339 betrifft OpenSSL, CVE-2006-4790 GnuTLS,
CVE-2006-4340 Network Security Services (NSS). Sun Bug ID 6466389
betrifft das JDK.
CVE-2006-2937 - Schwachstelle beim Parsen von ASN.1 Strukturen in
OpenSSL
Beim Parsen von ASN.1 Strukturen mittels OpenSSL wird ein Fehler nicht
korrekt behandelt. Dies kann dazu fuehren, dass das Programm in eine
Endlosschleife eintritt (Denial of Service).
CVE-2006-2940 - Schwachstelle beim Verarbeiten von Public Keys in
OpenSSL
Bei der Verarbeitung von oeffentlichen Schluesseln durch OpenSSL kann
es dazu kommen, dass OpenSSL uebermaessig viel Rechenzeit in Anspruch
nimmt. Ein entfernter Angreifer kann diese Schwachstelle ausnutzen, um
einen Denial of Service Angriff auf das System zu starten.
CVE-2006-3738 - Buffer Overflow in Funktion SSL_get_shared_ciphers() in
OpenSSL
In OpenSSL wurde innerhalb der Funktion SSL_get_shared_ciphers() eine
Schwachstelle entdeckt, durch die ein Buffer Overflow ausgeloest
werden kann. Die Funktion dient dem Bilden einer Schnittmenge zwischen
den vom Server und und vom Client unterstuetzten Ciphers. Ein
Angreifer kann durch das Senden von manipulierten Daten den Buffer
Overflow ausloesen und damit potentiell beliebige Befehle auf dem
betroffenen System ausfuehren.
Ob eine Anwendung von der Schwachstelle betroffen ist, haengt davon
ab, ob sie die Funktion SSL_get_shared_ciphers() verwendet. Dies ist
z.B. bei Exim, MySQL und openssl s_client / s_server der Fall.
CVE-2006-4343 - Null Pointer Referenzierung in get_server_hello()
Die OpenSSL Funktion get_server_hello() kann unter bestimmten
Umstaenden einen Null Pointer dereferenzieren, wodurch die Anwendung
abstuerzt. Dies ist z.B. im SSLv2 Client der Fall. Ein Angreifer kann
diese Schwachstelle ueber einen manipuliteren SSL-Server zu einem
Denial of Service Angriff ausnutzen.
Betroffen sind die folgenden Software Pakete und Plattformen:
* Cisco Global Site Selector (GSS 4480, 4490, 4491, 4492)
Ein Patch ist mit dem Release 2.0(1) im Februar 2007 angekuendigt.
* Cisco MDS 9500 Multilayer Director
* Cisco IDS
* Cisco ONS 15454 vor Version 8.0
* Cisco Access Registrar
* Cisco Secure ACS
* Cisco Security Agent ohne Hotfix 5.1.0.79.
* Cisco Call Manager ab Version 4.x.
Ein Patch ist mit dem Release 5.1(1) am 11. Dezember 2006 angekuendigt.
* Cisco Unified Presence Server
Ein Patch ist mit dem Release 1.0(3) am 16. November 2006 angekuendigt.
* Cisco Security MARS
Ein Patch ist mit dem Release 4.2.3 im Dezember 2006 angekuendigt.
* Cisco CSS 11500 vor Version 7.50.3.4S bzw. 8.10.2.6S.
* Cisco Wireless LAN Controller
Patches werden mit den Releases 4.0.x am 16. Dezember
bzw. 3.2.x am 31. Januar 2007 angekuendigt
* Cisco Application and Content Networking System (ACNS)
* Cisco Application Control Engine Module
* Cisco Wide Area File Services Software (WAFS)
* Cisco Wide Area Application Services (WAAS) Software
* Cisco SIP Proxy Servers
* CiscoWorks Common Services
* CiscoWorks Common Management Foundation
Hersteller Advisory:
http://www.cisco.com/warp/public/707/cisco-sr-20061108-openssl.shtml
(c) der deutschen Zusammenfassung bei DFN-CERT Services GmbH; die
Verbreitung, auch auszugsweise, ist nur unter Hinweis auf den Urheber,
DFN-CERT Services GmbH, und nur zu nicht kommerziellen Zwecken
gestattet.
Mit freundlichen Gruessen,
Klaus Moeller, DFN-CERT Services GmbH
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Cisco Security Response: Multiple Vulnerabilities in OpenSSL library
http://www.cisco.com/warp/public/707/cisco-sr-20061108-openssl.shtml
Revision 1.0
For Public Release 2006 November 08 1600 UTC (GMT)
- - ---------------------------------------------------------------------
Cisco Response
==============
This is the Cisco PSIRT response to the multiple security advisories
published by The OpenSSL Project. The vulnerabilities are as follows:
* RSA Signature Forgery (CVE-2006-4339), described in
http://www.openssl.org/news/secadv_20060905.txt
* ASN.1 Denial of Service Attacks (CVE-2006-2937, CVE-2006-2940),
described in http://www.openssl.org/news/secadv_20060928.txt
* SSL_get_shared_ciphers() buffer overflow (CVE-2006-3738), also in
http://www.openssl.org/news/secadv_20060928.txt leavingcisco.com
* SSLv2 Client Crash (CVE-2006-4343), also in
http://www.openssl.org/news/secadv_20060928.txt
As of this publication, there are no workarounds available for any of
these vulnerabilities, but it may be possible to mitigate some of the
exposure. This Security Response lists the status of each product or
application when considered individually. However, in cases where
multiple applications are running on the same computer, a
vulnerability in one application or component can compromise the
entire system. This compromise can then be leveraged against
applications that would otherwise be unaffected. Therefore, users
must consider all applications when determining their exposure to
these vulnerabilities. Cisco strongly recommends that customers
update all vulnerable applications and components to provide the
greatest protection from the listed vulnerabilities. Cisco will
update this document in the event of any changes.
Additional Information
======================
RSA Signature Forgery
+--------------------
During the CRYPTO 2006 conference, which was held August 20-24, 2006,
Daniel Bleichenbacher presented a method for forging RSA signatures.
The attack requires two conditions to be successful:
* The keys use 3 (three) as one of the RSA exponents.
* The signature verification algorithm has vulnerable
implementation.
Notes describing this attack are at
http://www.imc.org/ietf-openpgp/mail-archive/msg14307.html
The signature verification implementation vulnerability consists of
improper verification of PKCS-1 padded data. Any software with this
vulnerability might accept a forged signature, but only if the key
that is being forged has 3 (three) as one of the exponents.
ASN.1 Denial of Service Attacks
+------------------------------
Two vulnerabilities have been uncovered by an ASN.1 test suite
developed by Dr. S. N. Henson. Both of these vulnerabilities, if
exploited, can cause denial of service. The vulnerabilities are as
follows:
* Parsing of certain invalid ASN.1 structures can result in an
infinite loop that can consume system memory. This issue does not
affect OpenSSL versions prior to 0.9.7. This is assigned CVE
number CVE-2006-2937.
* Specially crafted public keys can take a disproportionate amount
of time to be processed. This is assigned CVE number
CVE-2006-2940.
SSL_get_shared_ciphers() buffer overflow
+---------------------------------------
A specially crafted list of ciphers can be used to overrun a buffer.
This vulnerability has been assigned CVE ID of CVE-2006-3738 and was
discovered by Tavis Ormandy and Will Drewry from Google Security
Team.
SSLv2 Client Crash
+-----------------
SSL server can send malformed packet during SSLv2 connection
negotiation that can crash an SSL client. This vulnerability is
assigned CVE ID CVE-2006-4343.
Products Affected by OpenSSL Vulnerabilites
+------------------------------------------
Note: This is not a definitive list. Cisco continues to verify other
products and the list will be updated accordingly. The following
products are affected by the OpenSSL issues listed in this Security
Response:
* Cisco Global Site Selector (GSS 4480, 4490, 4491, 4492) - Cisco
bug ID is CSCsg22734. The fix is
expected in the 2.0(1) release that is targeted for February
2007.
* Cisco MDS 9500 Multilayer Director - Cisco bug ID is
CSCsg01963. Availability of fixed software has not been determined
yet.
* Cisco IDS - Cisco bug ID is CSCsg09619. Availability of fixed
software has not been determined yet.
* Cisco ONS 15454 - Cisco bug ID is CSCsg16571. The fix is contained
in version 8.0 and later.
* Cisco Access Registrar - Cisco bug ID is CSCsg17943. Availability
of fixed software has not been determined yet.
* Cisco Secure ACS - Cisco bug ID is CSCsg24311. Availability of
fixed software has not been determined yet.
* Cisco Security Agent - Cisco bug ID is CSCsg46092. Fixed libraries
are provided by the hotfix 5.1.0.79. Other supported software
releases will be updated in an upcoming releases.
* Cisco Call Manager - Cisco bug IDs are CSCsg04397 and CSCsg04386.
Only software releases 4.x and higher are affected. None of the
previous releases are vulnerable. The fixes will be available in
software release 5.1(1) currently targeted for 2006-Dec-11.
* Cisco Unified Presence Server - Cisco bug ID CSCsg51110. Fixed
software will be available in CUPS 1.0(3), currently targeted for
2006-Nov-16.
* Cisco Security MARS - Cisco bug ID is CSCsg51304. The fixes will
be available in software release 4.2.3, which is expected in
2006-December.
* Cisco CSS 11500 Series Content Services Switches - Cisco bug ID is
CSCek57074. Fixed software is available as releases 7.50.3.4S and
8.10.2.6S.
* Cisco Wireless LAN Controller - Cisco bug ID is CSCsg59589. The
fixes will be available in upcoming software releases 4.0.x,
targeted for 2006-Dec-18, and 3.2.x, targeted for 2007-January-31.
* Cisco Application and Content Networking System (ACNS) - Cisco bug
ID is CSCsf97055 and CSCsg55732. Availability of fixed software
has not been determined yet.
* Cisco Application Control Engine Module - Cisco bug ID is
CSCsg36592. Availability of fixed software has not been determined
yet.
* Cisco Wide Area File Services Software (WAFS) - Cisco bug ID is
CSCsg55738. Availability of fixed software has not been determined
yet.
* Cisco Wide Area Application Services (WAAS) Software - Cisco bug
ID is CSCsg55742. Availability of fixed software has not been
determined yet.
* Cisco SIP Proxy Server - Cisco bug ID is CSCsg56292. Availability
of fixed software has not been determined yet.
* CiscoWorks Common Services - Cisco bug IDs are CSCsg58599 and
CSCsg58607. Some Cisco management products integrate CiscoWorks
Common Services into their general installation and runtime
environments. To verify, navigate the path Server Configuration >
About the Server > Applications and Versions in the CiscoWorks
Server. Availability of fixed software has not been determined
yet.
* CiscoWorks Common Management Foundation (CMF was referred to as
Common Services before the release of CiscoWorks 3.0) - Cisco bug
ID is CSCsg58592. Some Cisco management products integrate
CiscoWorks Common Services into their general installation and
runtime environments. To verify, navigate the path Server
Configuration > About the Server > Applications and Versions in
the CiscoWorks Server. Availability of fixed software has not been
determined yet.
Products Not Affected by OpenSSL Vulnerabilites
+----------------------------------------------
Note: This list is not a definitive list. Cisco continues to verify
other products and the list will be updated accordingly. The
following products are confirmed not vulnerable.
* Cisco IOS
* Cisco IOS XR
* Cisco IP Interoperability and Collaboration System (IPICS)
* Cisco ASA/PIX/FWSM - While these products contain the OpenSSL
libraries, they do not make use of the vulnerable code.
Nonetheless, the software library has been updated to avoid any
potential issues in the future.
+ For Cisco PIX/ASA, this is tracked by Cisco bug IDs
CSCsg21727, CSCsg52606, CSCsg07425, and CSCsg07405. Software
releases with updated libraries will be 6.3.6, 7.0.7,
7.1.2.26, and 7.2.1.21 and later.
+ For Cisco FWSM, this is tracked by Cisco bug ID CSCsg52485,
and the fixed libraries are expected in one of upcoming 3.1
interim releases.
Workaround
==========
SSL is predominately used for securing HTTP traffic, but is also used
to secure other TCP traffic, such as SMTP, POP3, IMAP, and FTP.
Generally speaking, there is no workaround for these issues, but
mitigation is possible. By blocking affected protocols at the edge of
your network and by allowing only legitimate IP addresses to connect
to your devices, it is possible to lower your exposure to these
vulnerabilities.
Another option, which could reduce the security of your system, is to
revert to non-secure variants of the protocols. In that case, you
will not be affected by the vulnerabilities described here, but your
traffic will be sent in clear text and, if intercepted, an adversary
will be able to read it or even modify it while in transit.
THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY
KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF
MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE
INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS
AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS
DOCUMENT AT ANY TIME.
Revision History
================
+----------------------------------------+
| Revision | | Initial |
| 1.0 | 2006-November-08 | public |
| | | release. |
+----------------------------------------+
Cisco Security Procedures
=========================
Complete information on reporting security vulnerabilities in Cisco
products, obtaining assistance with security incidents, and
registering to receive security information from Cisco, is available
on Cisco's worldwide website at
http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html
This includes instructions for press inquiries regarding Cisco
security notices. All Cisco security advisories are available at
http://www.cisco.com/go/psirt
- - ---------------------------------------------------------------------
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (Darwin)
iD8DBQFFUfF38NUAbBmDaxQRAs4AAKCfOiUIc66qQAK9t5mFDNZWcT8GLgCdEdyU
znZ1qZJqAO1J05Idk4o9QOU=
=Pcry
- -----END PGP SIGNATURE-----
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
iQEVAwUBRVMkxfBT2+ukQ5RFAQGFTgf/Q48iOCf/qZkc4vFEnYCseRkkjC8K8y1W
o0FPTgw79aLqakkSDos5eklSuiFuzFJZ7iM6iJU77j3y9hU2Pyr4vrw8vym9QiJ9
LLj6ePgDQGQMZjFC3dD9nCIRxbHDgk5HATNJbN5YTGyCh0jBXrj6FWoDTORvBUWQ
bqx4IjQYkI+bxmGzzlHUN7ul0xABywwgkn7/AuPd4i0Ce2NolGfxssSpCvdsVl6W
BAlw+L4DhHbTsJ+D/knfLI9lmyRIysVWIFPXumCMQWnzfAHIiM+pvuXOn4dg1JbE
8RJdPLxc0d2mDfODDdwHKUnIB7mWZdB0kTe9EUfODR3VTjnSCYmcHg==
=qUzK
-----END PGP SIGNATURE-----