Denial of Service Vulnerability in RSA BSAFE and Cisco Products
CVE-2006-3894

Currently unrated

Key Information:

Vendor: Dell
Status: Bsafe Cert-c; Bsafe Crypto-c
Vendor: CVE Published:; 22 May 2007

Summary

The vulnerability affects the RSA Crypto-C and Cert-C libraries prior to their respective versions, enabling remote attackers to exploit malformed ASN.1 objects. This exploitation can lead to a Denial of Service condition, impacting the availability of services that rely on these libraries within RSA BSAFE and several Cisco products.

References

http://jvn.jp/cert/JVNVU%23754281/index.html

x_refsource_CONFIRM

http://secunia.com/advisories/25364

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2007/1945

vdb-entryx_refsource_VUPEN

EPSS Score

11% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 22, 2007
Vulnerability Reserved
Jul 26, 2006