Buy or Renew
Buy or Renew
Notice: The file download function is disabled. We apologize for the inconvenience.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
299
Views
0
Helpful
1
Replies

OpenSSL CVE-2016-2181 Denial of Service Vulnerability

thamilIniyan.shanmugam
Level 1
Level 1

‎12-05-2016 12:59 AM - edited ‎03-19-2019 11:54 AM

Hey Folks,

I'm stucked with below CVE from Cisco.Can you guys advise cisco voice using any openssl protocol.

OpenSSL is an open-source implementation of the SSL protocol that is used by a number of other projects, including,

but not limited to Apache, Sendmail, and Bind. It is commonly found on Linux and UNIX systems.

OpenSSL is a local prone to a denial-of-service vulnerability that occurs due to an out-of-bounds read error. Specifically,

this issue occurs because it fails to properly check the message length.

A local attacker can exploit this issue to cause a denial-of-service condition.

Versions prior to OpenSSL 1.1.0 are vulnerable.

Iniyan

Labels:
0 Helpful
1 Reply 1

Adarsh Chauhan
Level 3
Level 3

‎12-05-2016 01:27 AM

Hi,

The description of vulnerability that you have mentioned matches with the following CVE-ID:

CVE-2016-6306.

List of Cisco Products affected by the vulnerability.

Please rate and mark correct if helpful

Regards,

Adarsh Chauhan


Please rate and mark correct if helpful
Regards,
Adarsh Chauhan
0 Helpful
Customers Also Viewed These Support Documents